RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

Multiple Apache vulnerabilities and updates

By N-Stalker Team on March 28, 2008

N-Stalker has made available the latest database update for its Web Application Security Assessment Products.

You will be able to download it automatically in the following versions:

  • N-Stalker Web Application Security Scanner 2006 (Enterprise, QA and Infrastructure Edition)
    • WSI Update (N-Stalker Update Manager)
  • N-Stealth HTTP Security Scanner (not updated)

You should be able to receive it automatically next time you execute the scanner.

If you prefer to download it manually, please, use the following url: https://customer.nstalker.com.

If you need any additional assistance during this process, please, contact us at:
Web: Open new support ticket at https://customer.nstalker.com
E-mail: http://www.nstalker.com/about/contact (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

  • Apache HTTP Server 2.2.4 413 Error HTTP Request Method Cross-Site Scripting Weakness [CVE-2007-6203]
  • MAXdev My eGallery 3.04 Module For Xoops GID Parameter SQL Injection Vulnerability
  • Jeebles Directory 2.9.60 Index.PHP PATH Parameter Cross Site Scripting Vulnerability [CVE-2008-1355]
  • Jeebles Directory 2.9.60 Index.PHP ACCESS_PASSWORD Parameter Cross Site Scripting Vulnerability [CVE-2008-1355]
  • Travelsized CMS 0.4.1 Index.PHP LANGUAGE Parameter Local File Include Vulnerability [CVE-2008-1324]
  • Travelsized CMS 0.4.1 Index.PHP PAGE_ID Parameter Local File Include Vulnerability [CVE-2008-1324]
  • Uberghey CMS 0.3.1 Index.PHP PAGE_ID Parameter Local File Include Vulnerability [CVE-2008-1325]
  • Uberghey CMS 0.3.1 Index.PHP LANGUAGE Parameter Local File Include Vulnerability [CVE-2008-1325]
  • Download Center 1.2 Index.PHP FILE Parameter Cross Site Scripting Vulnerability
  • Download Center 1.2 Index.PHP SEARCH Parameter Cross Site Scripting Vulnerability
  • Download Center 1.2 Index.PHP NAV/NOW Parameter Cross Site Scripting Vulnerability
  • Download Center 1.2 Index.PHP NOW Parameter Cross Site Scripting Vulnerability
  • Download Center 1.2 Index.PHP CATEGORY Parameter Cross Site Scripting Vulnerability
  • Download Center 1.2 Index.PHP MESSAGE Parameter Cross Site Scripting Vulnerability
  • QuickTalk forum 1.6 Qtf_Ind_Search_Ov.PHP SQL Injection Vulnerability [CVE-2008-1316]
  • onlinetools.org EasyImageCatalogue 1.31 Index.PHP SEARCH Parameter Cross-Site Scripting Vulnerability
  • onlinetools.org EasyImageCatalogue 1.31 Index.PHP D Parameter Cross-Site Scripting Vulnerability
  • onlinetools.org EasyImageCatalogue 1.31 Thumber.PHP Cross-Site Scripting Vulnerability
  • onlinetools.org EasyImageCatalogue 1.31 Describe.PHP Cross-Site Scripting Vulnerability
  • onlinetools.org EasyImageCatalogue 1.31 Addcomment.PHP Cross-Site Scripting Vulnerability
  • Bloo 1.00 Index.PHP POST_ID Parameter SQL Injection Vulnerability [CVE-2008-1313]
  • Bloo 1.00 Index.PHP POST_CATEGORY_ID Parameter SQL Injection Vulnerability [CVE-2008-1313]
  • Bloo 1.00 Index.PHP POST_YEAR_MONTH Parameter SQL Injection Vulnerability [CVE-2008-1313]
  • Bloo 1.00 Index.PHP STATIC_PAGE_ID Parameter SQL Injection Vulnerability [CVE-2008-1313]
  • PHP-Nuke NukeC30 3.0 Module ID_CATG Parameter SQL Injection Vulnerability [CVE-2008-1308]
  • Mapbender 2.4.4 Mod_Gazetteer_Edit.PHP SQL Injection Vulnerability [CVE-2008-0301]
  • phpBB Filebase Module 2.0 Filebase.PHP SQL Injection Vulnerability [CVE-2008-1305]
  • phpMyNewsLetter 0.8 Archives.PHP SQL Injection Vulnerability [CVE-2008-1295]
  • EncapsGallery 1.11.2 Watermark.PHP Cross-Site Scripting Vulnerability [CVE-2008-1296]
  • EncapsGallery 1.11.2 Catalog_Watermark.PHP Cross-Site Scripting Vulnerability [CVE-2008-1296]
  • PHP-Nuke Hadith Module CAT Parameter SQL Injection Vulnerability [CVE-2008-1298]
  • QuickTicket 1.5.0.3 Qti_Usr.PHP SQL Injection Vulnerability [CVE-2007-3539]
  • Gallarific Search.PHP Cross-Site Scripting Vulnerability [CVE-2008-1326]
  • Joomla! and Mambo ENSENANZAS Component ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_EWRITING 1.2.1 Component ITEMID Parameter SQL Injection Vulnerability [CVE-2008-1297]
  • Joomla! and Mambo CANDLE Component 1.0 CID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo ProductShowcase Component 1.5 ID Parameter SQL Injection Vulnerability
  • SmartFactory WF-Downloads 2.0.5 XOOPS Module Viewcat.PHP SQL Injection Vulnerability
  • Drake CMS 0.4.11 D_ROOT Parameter Local File Include Vulnerability [CVE-2008-1371]
  • PHP-Nuke 4nAlbum Module 0.92 PID Parameter SQL Injection Vulnerability
  • Batchelor Media BM Classifieds Showad.PHP SQL Injection Vulnerability [CVE-2008-1272]
  • Batchelor Media BM Classifieds Pfriendly.PHP SQL Injection Vulnerability [CVE-2008-1272]
  • Cacti 0.8.7 Graph.PHP Cross-Site Scripting Vulnerability [CVE-2008-0783]
  • Cacti 0.8.7 Graph_Xport.PHP SQL Injection Vulnerability [CVE-2008-0785]
  • Cacti 0.8.7 Tree.PHP SQL Injection Vulnerability [CVE-2008-0783]
  • Cacti 0.8.7 Graph_View.PHP SQL Injection Vulnerability [CVE-2008-0785]
  • Cacti 0.8.7 Index.PHP Cross-Site Scripting Vulnerability [CVE-2008-0783]
  • Cacti 0.8.7 Graph_View.PHP Cross-Site Scripting Vulnerability [CVE-2008-0783]
  • PHP-Nuke Johannes Hass GAESTEBUCH Module 2.2 ID Parameter SQL Injection Vulnerability [CVE-2008-1314]
  • F5 BIG-IP Web Management 9.4.3 Interface Console HTML Injection Vulnerability [CVE-2008-0539]
  • SID Taxonservice.PHP Remote File Include Vulnerability
  • SID Client.PHP Remote File Include Vulnerability
  • Imagevue 1.7 Dirxml.PHP Cross-Site Scripting Vulnerability [CVE-2008-1273]
  • Imagevue 1.7 Popup.PHP Cross-Site Scripting Vulnerability [CVE-2008-1273]
  • Imagevue 1.7 Dir2.PHP Cross-Site Scripting Vulnerability [CVE-2008-1273]
  • Imagevue 1.7 Upload.PHP Cross-Site Scripting Vulnerability [CVE-2008-1273]
  • WordPress 2.3.2 Invites.PHP Cross-Site Scripting Vulnerability [CVE-2008-1304]
  • WordPress 2.3.2 Users.PHP Cross-Site Scripting Vulnerability [CVE-2008-1304]
  • BosClassifieds 3.0 Account.PHP Cross-Site Scripting Vulnerability [CVE-2008-1224]
  • PHP-Nuke 4nChat Module 0.91 Modules.PHP SQL Injection Vulnerability [CVE-2008-1220]
  • PHP-Nuke KutubiSitte Module KID Parameter SQL Injection Vulnerability [CVE-2008-1219]
  • Yap Blog 1.1 Index.PHP Remote File Include Vulnerability [CVE-2008-1370]
  • PHP-Nuke Yellow_Pages Module 1.0 Modules.PHP SQL Injection Vulnerability
  • Podcast Generator 0.96.2 Set_Permissions.PHP Cross-Site Scripting Vulnerability [CVE-2008-1212]
  • MG2 Admin.PHP Cross-Site Scripting Vulnerability [CVE-2008-1228]
  • Mitra Informatika Solusindo Cart P Parameter SQL Injection Vulnerability
  • PHP-Nuke Seminars Module Autohtml.PHP Local File Include Vulnerability
  • PHP-Nuke eGallery Module 3.0 Modules.PHP SQL Injection Vulnerability
  • XRMS CRM 1.99.2 Self.PHP Cross Site Scripting Vulnerability [CVE-2008-1129]
  • Barryvan Compo Manager 0.3 Main.PHP Remote File Include Vulnerability [CVE-2008-1126]
  • phpMyTourney 2.0 Tourney/Index.PHP Remote File Include Vulnerability [CVE-2008-1128]
  • Podcast Generator 1.0 Loadparser.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Recent_List.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Archive_Nocat.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Archive_Cat.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Upload.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Showcat.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 PgRSSnews.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Login.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Ftpfeature.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Editdel.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Edit.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Categories_Remove.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Categories_Add.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Categories.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Admin.PHP Remote File Include Vulnerability [CVE-2008-1124]
  • Podcast Generator 1.0 Download.PHP Local File Include Vulnerability [CVE-2008-1125]
  • Podcast Generator 1.0 Themes.PHP Local File Include Vulnerability [CVE-2008-1125]
  • SiteBuilder Elite 1.2 Carprss.PHP Remote File Include Vulnerability [CVE-2008-1123]
  • SiteBuilder Elite 1.2 Amazon-Bestsellers.PHP Remote File Include Vulnerability [CVE-2008-1123]
  • Centreon 1.4.2.3 Get_Image.PHP Local File Include Vulnerability [CVE-2008-1119]
  • Koobi Pro 5.7 CATEG Parameter SQL Injection Vulnerability [CVE-2008-1122]
  • KC Wiki 1.0 Simplest/Wiki.PHP Remote File Include Vulnerability [CVE-2008-1170]
  • KC Wiki 1.0 Minimal/Wiki.PHP Remote File Include Vulnerability [CVE-2008-1170]
  • PHP WEB SCRIPT Dynamic Photo Gallery 1.02 Album.PHP SQL Injection Vulnerability [CVE-2008-1162]
  • phpComasy 0.8 Index.PHP SQL Injection Vulnerability [CVE-2008-1164]
  • phpArcadeScript 3.0 USERID Parameter SQL Injection Vulnerability [CVE-2008-1163]
  • Joomla! and Mambo COM_MUSICA Component ID Parameter SQL Injection Vulnerability
  • Koobi 4.3 CATEG Parameter SQL Injection Vulnerability [CVE-2008-1336]
  • Simple PHP Scripts gallery 0.4 Index.PHP Cross-Site Scripting Vulnerability
  • Simple PHP Scripts blog 0.3 Complete.PHP Cross-Site Scripting Vulnerability
  • Centreon 1.4.2.3 Index.PHP Local File Include Vulnerability [CVE-2008-1178]
  • GROUP-E 1.6.41 Head_Auth.PHP Remote File Include Vulnerability [CVE-2008-1074]
  • Joomla! and Mambo COM_SIMPLEBOARD Component 1.0.3 CATID Parameter SQL Injection Vulnerability [CVE-2008-1077]
  • Flicks Software AuthentiX 6.3b1 USERNAME Parameter Cross-Site Scripting Vulnerability
  • Juniper Networks Secure Access 2000 5.5R1 Rdremediate.CGI Cross Site Scripting Vulnerability [CVE-2008-1180]
  • Gerd Tentler Simple Forum 3.2 Directory Traversal Vulnerability [CVE-2008-0542]
  • Gerd Tentler Simple Forum 3.2 OPEN Parameter Cross-Site Scripting Vulnerability [CVE-2008-0541]
  • Gerd Tentler Simple Forum 3.2 DATE_SHOW Parameter Cross-Site Scripting Vulnerability [CVE-2008-0541]
  • PHP-Nuke My_eGallery Module 3.1.2 GID Parameter SQL Injection Vulnerability
  • MiniNuke 2.1 Members.ASP SQL Injection Vulnerability
  • Plume CMS 1.2.2 Manager/Xmedia.PHP Cross-Site Scripting Vulnerability [CVE-2008-1048]
  • Packeteer PacketShaper and PolicyCenter 8.2.2 FILELIST Parameter Cross-Site Scripting Vulnerability [CVE-2008-1037]
  • Aeries Browser Interface 3.7.9.17 LostPwd.ASP SQL Injection Vulnerability [CVE-2007-6517]
  • Softbiz Jokes and Funny Pictures Script SBCAT_ID Parameter SQL Injection Vulnerability [CVE-2008-1050]
  • DrBenHur.com DBHcms 1.1.4 Mod.Extmanager.PHP Remote File Include Vulnerability [CVE-2008-1038]
  • PORAR Webboard Question.ASP SQL Injection Vulnerability [CVE-2008-1039]
  • Alkacon OpenCms 7.0.3 Tree_Files.JSP Cross-Site Scripting Vulnerability [CVE-2008-1045]
  • WordPress Sniplets 1.1.2 Plugin Warning.PHP Cross-Site Scripting Vulnerability [CVE-2008-1061]
  • WordPress Sniplets 1.1.2 Plugin Execute.PHP Cross-Site Scripting Vulnerability [CVE-2008-1061]
  • WordPress Sniplets 1.1.2 Plugin Submenu.PHP Cross-Site Scripting Vulnerability [CVE-2008-1061]
  • WordPress Sniplets 1.1.2 Plugin Inset.PHP Cross-Site Scripting Vulnerability [CVE-2008-1061]
  • WordPress Sniplets 1.1.2 Plugin Notice.PHP Cross-Site Scripting Vulnerability [CVE-2008-1061]
  • WordPress Sniplets 1.1.2 Plugin Remote File Include Vulnerability [CVE-2008-1059]
  • Galore Simple Shop 3.1 SECTION Parameter SQL Injection Vulnerability
  • Matt\’s Whois Mwhois.PHP Cross-Site Scripting Vulnerability [CVE-2008-1041]
  • PHP-Nuke Kose_Yazilari Module VIEWARTICLE Parameter SQL Injection Vulnerability [CVE-2008-1053]
  • PHP-Nuke Kose_Yazilari Module PRINTPAGE Parameter SQL Injection Vulnerability [CVE-2008-1053]
  • PHP-Nuke Sell Module CID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_WINES Component 1.0 ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_INTER Component ID Parameter SQL Injection Vulnerability
  • Gary\’s Cookbook 3.0 ID Parameter SQL Injection Vulnerability [CVE-2008-1137]
  • Joomla! and Mambo COM_BLOG Component PID Parameter SQL Injection Vulnerability [CVE-2007-3847]
  • F5 BIG-IP Application Security Manager 9.4.3 REPORT_TYPE Cross-Site Scripting Vulnerability [CVE-2008-0539]
  • Joomla! and Mambo COM_PUBLICATION Component PID Parameter SQL Injection Vulnerability
  • Portail Web Php 2.5.1 Vert/Index.PHP Remote File Include Vulnerability [CVE-2008-1068]
  • Portail Web Php 2.5.1 Noir/Index.PHP Remote File Include Vulnerability [CVE-2008-1068]
  • Portail Web Php 2.5.1 Bleu/Index.PHP Remote File Include Vulnerability [CVE-2008-1068]
  • Portail Web Php 2.5.1 Local File Include Vulnerability [CVE-2008-1068]
  • LWS php User Base 1.3 Unverified.Inc.PHP Local File Include Vulnerability
  • LWS php User Base 1.3 Header.Inc.PHP Remote File Include Vulnerability [CVE-2008-1043]
  • auraCMS 2.2 LIHATBERITA Module ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_HELLO_WORLD Component ID Parameter SQL Injection Vulnerability
  • PHP-Nuke Gallery Module 1.3 AID Parameter SQL Injection Vulnerability
  • PHP-Nuke Sections Module ARTID Parameter SQL Injection Vulnerability
  • PHP-Nuke Recipe Module 1.3 RECIPEID Parameter SQL Injection Vulnerability
  • phpProfiles 4.5.2 Body_Comm.Inc.PHP Remote File Include Vulnerability [CVE-2008-1051]
  • CruxCMS 3.0 Search.PHP Cross-Site Scripting Vulnerability [CVE-2008-0700]
  • Highwood Design hwdVideoShare ITEMID Parameter SQL Injection Vulnerability [CVE-2008-0916]
  • Joomla!, Mambo and PHP-Nuke Quran 1.1 Component SQL Injection Vulnerability [CVE-2008-0832]
  • Citrix MetaFrame Web Manager Login.ASP Cross-Site Scripting Vulnerability
  • Quantum Game Library 0.7.2c Server_Request.PHP Remote File Include Vulnerability [CVE-2008-1069]
  • Quantum Game Library 0.7.2c Smarty.Inc.PHP Remote File Include Vulnerability [CVE-2008-1069]
  • OSSIM Open Source Security Information Management 0.9.9 rc5 Modifyportform.PHP SQL Injection Vulnerability [CVE-2008-0920]
  • OSSIM Open Source Security Information Management 0.9.9 rc4 Login.PHP Cross-Site Scripting Vulnerability [CVE-2008-0919]
  • beContent 0.3.1 News.PHP SQL Injection Vulnerability [CVE-2008-0921]
  • PHP-Nuke Manuales Module 0.1 CID Parameter SQL Injection Vulnerability [CVE-2008-0922]
  • PHP-Nuke NukeC 2.1 Module ID_CATG Parameter SQL Injection Vulnerability [CVE-2008-0934]
  • PHP-Nuke Classifieds Module DETAILS Parameter SQL Injection Vulnerability [CVE-2008-1315]
  • XOOPS Tiny Event 1.01 PRINT Option SQL Injection Vulnerability [CVE-2008-0937]
  • PHP-Nuke Downloads Module SID Parameter SQL Injection Vulnerability [CVE-2008-0461]
  • Aeries Student Information System 3.8.2.8 Comments.ASP SQL Injection Vulnerability [CVE-2008-0943]
  • Aeries Student Information System 3.8.2.8 GradebookStuScores.ASP SQL Injection Vulnerability [CVE-2008-0942]
  • Aeries Student Information System 3.8.2.8 ClassList.ASP SQL Injection Vulnerability [CVE-2008-0943]
  • Aeries Student Information System 3.8.2.8 Labels.ASP SQL Injection Vulnerability [CVE-2008-0943]
  • Joomla! and Mambo Referenzen Component ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_ASORTYMENT Component KATID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_MOST Component SECID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_JOOMLAVVZ Component ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_CLASIFIER Component CAT_ID Parameter SQL Injection Vulnerability [CVE-2008-0842]
  • iScripts MultiCart 2.0 Productdetails.PHP SQL Injection Vulnerability [CVE-2008-0911]
  • Rapid-Source Rapid-Recipe Component 1.6.5 Index.PHP CATEGORY_ID Parameter SQL Injection Vulnerability [CVE-2008-0831]
  • Rapid-Source Rapid-Recipe Component 1.6.5 Index.PHP USER_ID Parameter SQL Injection Vulnerability [CVE-2008-0831]
  • Globsy 1.0 Globsy_Edit.PHP Local File Include Vulnerability [CVE-2008-0905]
  • XOOPS eEmpregos Module Index.PHP SQL Injection Vulnerability [CVE-2008-0874]
  • Schoolwires Academic Portal Cross-Site Scripting Vulnerability [CVE-2008-0909]
  • Schoolwires Academic Portal SQL Injection Vulnerability [CVE-2008-0908]
  • RunCMS MyAnnonces Module CID Parameter SQL Injection Vulnerability [CVE-2008-0878]
  • Facile Forms 1.4.7 CATID Parameter SQL Injection Vulnerability [CVE-2008-0855]
  • Jinzora 2.7.5 Index.PHP FRONTEND Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Popup.PHP QUERY Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Popup.PHP SITENEWSDATA Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Popup.PHP JZ_PATH Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Popup.PHP FRONTEND Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Popup.PHP THEME Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Slim.PHP Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Ajax_Request.PHP THEME Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Ajax_Request.PHP FRONTEND Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Ajax_Request.PHP LANGUAGE Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Index.PHP SET_THEME Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Index.PHP THEME Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Index.PHP JZ_PATH Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • Jinzora 2.7.5 Index.PHP SET_FRONTEND Parameter Cross-Site Scripting Vulnerability [CVE-2008-0877]
  • MoinMoin 1.6 Multiple Cross Site Scripting Vulnerabilities [CVE-2008-0780]
  • SIMM-Comm SCI Photo Chat 3.4.9 Directory Traversal Vulnerability [CVE-2008-1169]
  • SIMM-Comm SCI Photo Chat 3.4.9 Directory Traversal Vulnerability [CVE-2008-1169]
  • Thecus N5200Pro NAS Server Control Panel Usrgetform.HTML Remote File Include Vulnerability [CVE-2008-0804]
  • ProjectPier 0.8 Cross-Site Scripting Vulnerability
  • Yellow Swordfish Simple Forum 1.9 Sf-Profile.PHP SQL Injection Vulnerability
  • sCssBoard 1.12 Index.PHP F Parameter SQL Injection Vulnerability
  • vulnSig_title vulnSig_[CVE]
  • sCssBoard 1.12 Index.PHP U Parameter SQL Injection Vulnerability
  • astatsPRO 1.0 COM_ASTATSPRO Component ID Parameter SQL Injection Vulnerability [CVE-2008-0839]
  • PHP-Nuke Inhalt Module CID Parameter SQL Injection Vulnerability [CVE-2008-0907]
  • PHP-Nuke Docum Module ARTID Parameter SQL Injection Vulnerability [CVE-2008-0906]
  • Joomla! and Mambo COM_PCCOOKBOOK Component \’user_id\’ Parameter SQL Injection Vulnerability [CVE-2008-0844]
  • Woltlab Burning Board 3.0.3 PASSWORD SQL Injection Vulnerability [CVE-2008-0857]
  • PHP-Nuke Okul Module 1.0 OKULID Parameter SQL Injection Vulnerability [CVE-2008-0881]
  • PHP-Nuke EasyContent Module PAGE_ID Parameter SQL Injection Vulnerability [CVE-2008-0880]
  • PHP-Nuke Web_Links Module CID Parameter SQL Injection Vulnerability [CVE-2008-0879]
  • PHP-Nuke Books Module CID Parameter SQL Injection Vulnerability [CVE-2008-0827]
  • AuraCMS 1.62 DL.PHP SQL Injection Vulnerability [CVE-2008-0811]
  • AuraCMS 1.62 Search.PHP SQL Injection Vulnerability [CVE-2008-0811]
  • AuraCMS 1.62 Links.PHP SQL Injection Vulnerability [CVE-2008-0811]
  • TRUC Tracking Requirements & Use Cases 0.11 Download.PHP File Disclosure Vulnerability [CVE-2008-0814]
  • XOOPS CLASSIFIEDS Module 1.0 CID Parameter SQL Injection Vulnerability [CVE-2008-0873]
  • XOOPS BADLIEGE Module ID Parameter SQL Injection Vulnerability
  • XOOPS VACATURES Module CID Parameter SQL Injection Vulnerability
  • XOOPS EVENTS Module ID Parameter SQL Injection Vulnerability
  • XOOPS SEMINARS Module ID Parameter SQL Injection Vulnerability
  • XOOPS myTopics Module Print.PHP SQL Injection Vulnerability [CVE-2008-0847]
  • WordPress wp-people 2.0 Plugin Wp-People-Popup.PHP SQL Injection Vulnerability [CVE-2008-0845]
  • WordPress Recipes Blog Plugin ID Parameter SQL Injection Vulnerability [CVE-2008-0682]
  • iJoomla COM_MAGAZINE Component PAGEID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_GENEALOGY Component ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_FORMTOOL Component CATID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_IIGCATALOG Component CAT Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_TEAM Component SQL Injection Vulnerability
  • RunCMS 1.6.1 Admin.PHP Cross-Site Scripting Vulnerability
  • LightBlog 9.6 View_Member.PHP Local File Include Vulnerability [CVE-2008-0840]
  • Dokeos 1.8.4 Whoisonline.PHP SQL Injection Vulnerability [CVE-2008-0850]
  • Dokeos 1.8.4 Add_Course.PHP SQL Injection Vulnerability [CVE-2008-0850]
  • Dokeos 1.8.4 Index.PHP SQL Injection Vulnerability [CVE-2008-0850]
  • Dokeos 1.8.4 Inscription.PHP Cross-Site Scripting Vulnerability [CVE-2008-0851]
  • Dokeos 1.8.4 Session_List.PHP Cross-Site Scripting Vulnerability [CVE-2008-0851]
  • Dokeos 1.8.4 Course_Category.PHP Cross-Site Scripting Vulnerability [CVE-2008-0851]
  • Dokeos 1.8.4 Myagenda.PHP Cross-Site Scripting Vulnerability [CVE-2008-0851]
  • WordPress Plugin WP-Forum 1.7.4 SQL Injection Vulnerability [CVE-2008-0388]
  • Jooget! 2.6.8 ID Parameter SQL Injection Vulnerability [CVE-2008-0829]
  • WP Photo Album 1.1 PHOTO Parameter SQL Injection Vulnerability [CVE-2008-0939]
  • XPWeb 3.3.2 Download.PHP File Disclosure Vulnerability [CVE-2008-0813]
  • BanPro DMS 1.0 Index.PHP Local File Include Vulnerability [CVE-2008-0812]
  • Joomla! and Mambo COM_DOWNLOADS Component CAT Parameter SQL Injection Vulnerability [CVE-2008-0849]
  • Joomla! and Mambo COM_PROFILE Component OID Parameter SQL Injection Vulnerability [CVE-2008-0846]
  • Joomla! and Mambo Portfolio Manager 1.0 Component CATEGORYID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_RICETTE 1.0 Component ID Parameter SQL Injection Vulnerability [CVE-2008-0841]
  • Joomla! and Mambo COM_DETAIL Component ID Parameter SQL Injection Vulnerability [CVE-2008-0853]
  • Joomla! and Mambo COM_SCHEDULING Component ID Parameter SQL Injection Vulnerability [CVE-2008-0810]
  • Joomla! and Mambo COM_GALERIA Component ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_FILEBASE Component FILECATID Parameter SQL Injection Vulnerability [CVE-2008-0817]
  • Joomla! and Mambo COM_LEXIKON Component ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_SALESREP Component RID Parameter SQL Injection Vulnerability [CVE-2008-0854]
  • Simple CMS 1.0.3 Indexen.PHP SQL Injection Vulnerability [CVE-2008-0835]
  • Yellow Swordfish Simple Forum 1.11 TOPIC Parameter SQL Injection Vulnerability
  • Yellow Swordfish Simple Forum 1.9 TOPIC Parameter SQL Injection Vulnerability
  • Yellow Swordfish Simple Forum 1.9 Index.PHP SQL Injection Vulnerability
  • Joomla! and Mambo faq Component CATID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_ACTIVITIES Component ID Parameter SQL Injection Vulnerability
  • Joomla! and Mambo COM_SMSLIST Component LISTID Parameter SQL Injection Vulnerability
  • Joomla! MCQuiz 0.9 Component TID Parameter SQL Injection Vulnerability [CVE-2008-0800]
  • Joomla! PAXXGallery Component 0.2 USERID Parameter SQL Injection Vulnerability [CVE-2008-0801]
  • Joomla! PAXXGallery Component 0.2 IID Parameter SQL Injection Vulnerability [CVE-2008-0801]
  • Joomla! MediaSlide Component 0.5 ALBUMNUM Parameter SQL Injection Vulnerability [CVE-2008-0802]
  • Joomla! and Mambo COM_QUIZ Component 0.81 TID Parameter SQL Injection Vulnerability [CVE-2008-0799]
  • OSI Codes PHP Live! 3.2.2 Knowledge_Searchm.PHP SQL Injection Vulnerability [CVE-2008-0821]
  • PlutoStatus Locator 1.0 Index.PHP Local File Include Vulnerability [CVE-2008-0819]
  • artmedic webdesign weblog Index.PHP Cross-Site Scripting Vulnerability [CVE-2008-0765]
  • artmedic webdesign weblog Artmedic_Print.PHP Cross-Site Scripting Vulnerability [CVE-2008-0765]
  • artmedic webdesign weblog Index.PHP Local File Include Vulnerability [CVE-2008-0798]
  • artmedic webdesign weblog Artmedic_Print.PHP Local File Include Vulnerability [CVE-2008-0798]
  • AstroSoft HelpDesk Article_Search_Results.ASP Cross-Site Scripting Vulnerability [CVE-2008-0605]
  • AstroSoft HelpDesk Article_Attachment.ASP Cross-Site Scripting Vulnerability [CVE-2008-0605]
  • JSPWiki 2.5.139 Edit.JSP Cross-Site Scripting Vulnerability [CVE-2008-1229]
  • Affiliate Market 0.1 Header.PHP Local File Include Vulnerability [CVE-2008-0794]
  • Joomla! and Mambo COM_XFAQ XfaQ 1.2 Component AID Parameter SQL Injection Vulnerability [CVE-2008-0795]
  • Joomla! and Mambo COM_MODEL Component OBJID Parameter SQL Injection Vulnerability
  • RMSOFT Gallery System For XOOPS 2.0 Images.PHP SQL Injection Vulnerability [CVE-2008-0611]
  • Graphviz 2.12 GIF File Remote Buffer Overflow Vulnerability
  • Sun Solaris 10 Language Input Methods Security Vulnerability [CVE-2008-0730]
  • Adobe RoboHelp 6 and 7 Unspecified Cross-Site Scripting Vulnerability [CVE-2008-0642]
  • AuraCMS 2.2 Gallery_Data.PHP SQL Injection Vulnerability [CVE-2008-0735]
  • Prince Clan Chess Club 0.8 COM_PCCHESS Component USER_ID Parameter SQL Injection Vulnerability
  • Endian Firewall 2.1.2 Userslist.PHP Cross-Site Scripting Vulnerability [CVE-2008-0494]
  • okul siteleri COM_MEZUN Component SQL Injection Vulnerability [CVE-2008-0815]
  • LI-Countdown Countdown.PHP SQL Injection Vulnerability [CVE-2008-0789]
  • vKios 2.0 Products.PHP SQL Injection Vulnerability
  • Joomla! and Mambo COM_IOMEZUN Component ID Parameter SQL Injection Vulnerability [CVE-2008-0762]
  • Apple QuickTime 7.4.1 QTPlugin.OCX ActiveX Control Multiple Buffer Overflow Vulnerabilities [CVE-2008-0778]
  • Joomla! and Mambo COM_COMMENTS Component 0.5.8.5g ID Parameter SQL Injection Vulnerability [CVE-2008-0773]
  • Loris Hotel Reservation System 3.01 Search.CGI Cross-Site Scripting Vulnerability [CVE-2008-0774]
  • Simple Machine SMF Shoutbox Module 1.16b SboxDB.PHP HTML Injection Vulnerability [CVE-2008-0775]
  • Softwebs Nepal Fast Chat 1.0 Loginprg.ASP Cross-Site Scripting Vulnerability
  • VWar 1.5 Calendar.PHP SQL Injection Vulnerability [CVE-2008-0753]
  • Mix Systems CMS Index.PHP PARENT Parameter SQL Injection Vulnerability
  • Mix Systems CMS Index.PHP ID Parameter SQL Injection Vulnerability
  • iTechBids Gold 6.0 Detail.PHP SQL Injection Vulnerability [CVE-2008-0776]
  • Husrev BlackBoard 2.0.2 Philboard_Forum.ASP SQL Injection Vulnerability [CVE-2008-0750]

This entry was posted in N-Stalker Latest Updates. Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us