RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

phpCommunity and WordPress fMolog plugin vulnerabilities

By N-Stalker Team on March 23, 2009

N-Stalker has made available its latest “N-Stealth Web Attack Database” update for all products, including N-Stalker 2009 and 2006 version.You should be able to automatically download it next time you execute N-Stalker Scanner.

If you need to contact us for additional instructions, go to N-Stalker’s Customer Center.

This release includes patterns for the following vulnerabilities:

  • WordPress fMoblog Plugin 2.1 Index.PHP SQL Injection Vulnerability – [CVE-2009-0968]
  • phpComasy 0.9 Index.PHP SQL Injection Vulnerability – [CVE-2009-1023]
  • Beerwin’s PhpLinkAdmin 1.0 Linkadmin.PHP Remote File Include Vulnerability – [CVE-2009-1025]
  • Beerwin’s PhpLinkAdmin 1.0 Edlink.PHP SQL Injection Vulnerability – [CVE-2009-1024]
  • YAP 1.1.1 Index.PHP Local File Include Vulnerability – [CVE-2009-1024]
  • Kim Websites 1.0 Login.PHP SQL Injection Vulnerability – [CVE-2009-1024]
  • PassWiki 0.9.17 Passwiki.PHP Local File Include Vulnerability – [CVE-2008-6423]
  • Social Site Generator Social_Game_Play.PHP Remote File Include Vulnerability – [CVE-2008-6421]
  • Social Site Generator Display_Blog.PHP SQL Injection Vulnerability – [CVE-2008-6419]
  • Social Site Generator Social_My_Profile_Download.PHP SQL Injection Vulnerability – [CVE-2008-6419]
  • Social Site Generator Social_Forum_Subcategories.PHP SQL Injection Vulnerability – [CVE-2008-6419]
  • ol\’ bookmarks manager 0.7.5 Index.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • TikiWiki 3.0 Tiki-Orphan_Pages.PHP Cross Site Scripting Vulnerability – [CVE-2008-6409]
  • TikiWiki 3.0 Tiki-Listpages.PHP Cross Site Scripting Vulnerability – [CVE-2008-6409]
  • TikiWiki 3.0 Tiki-List_File_Gallery.PHP Cross Site Scripting Vulnerability – [CVE-2008-6409]
  • PHPRecipeBook 2.18 Index.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • Aryanic HighPortal 10.0 Web_Search.ASPX Cross Site Scripting Vulnerability – [CVE-2008-6409]
  • WEBJump! Portfolio_Genre.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • WEBJump! News_Id.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • Woltlab Burning Board 3.0.5 Dereferrer.PHP Cross-Site Scripting Vulnerability – [CVE-2008-6409]
  • phpCommunity2 2.1.8 Login.PHP Cross-Site Scripting Vulnerability – [CVE-2008-6409]
  • phpCommunity2 2.1.8 Index.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • phpCommunity2 2.1.8 Show_File.PHP Cross-Site Scripting Vulnerability – [CVE-2008-6409]
  • phpCommunity2 2.1.8 Show_Source.PHP Local File Include Vulnerability – [CVE-2008-6409]
  • PHPRecipeBook 2.18 Index.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • CS-Cart 2.0 Index.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • PHP-Fusion Book Panel Module Books.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • PHP Director 0.21 Index.PHP SQL Injection Vulnerability – [CVE-2008-6409]
  • Simple Customer 1.2 Login.PHP SQL Injection Vulnerability – [CVE-2008-6326]
  • PHPFootball 1.6 Filter.PHP Cross-Site Scripting Vulnerability – [CVE-2009-0710]
  • ZABBIX 1.6.2 Locales.PHP Remote Code Execution Vulnerability – [CVE-2009-0710]
  • ZABBIX 1.6.2 Locales.PHP Local File Include Vulnerability – [CVE-2009-0710]
  • ZABBIX 1.6.2 Tr_Status.PHP Remote Code Execution Vulnerability – [CVE-2009-0710]
  • PHORTAIL 1.2.1 Poster.PHP HTML Injection Vulnerability – [CVE-2009-0710]
  • CMS S.Builder 3.7 Index.PHP Remote File Include Vulnerability – [CVE-2009-0710]
  • nForum 25042004 Userinfo.PHP SQL Injection Vulnerability – [CVE-2009-0710]
  • nForum 25042004 Showtheme.PHP SQL Injection Vulnerability – [CVE-2009-0710]
  • OneOrZero Helpdesk 1.6.5.7 Login.PHP Local File Include Vulnerability – [CVE-2009-0710]
  • Scripts For Sites EZ Hotscripts Software-Description.PHP SQL Injection Vulnerability – [CVE-2008-6273]
  • TinX CMS 3.5 Rss.PHP SQL Injection Vulnerability – [CVE-2009-0825]
  • Wili-CMS 0.4 Admin.PHP SQL Injection Vulnerability – [CVE-2009-0825]
  • Wili-CMS 0.4 Index.PHP Remote File Include Vulnerability – [CVE-2009-0825]
  • Wili-CMS 0.4 Index.PHP Local File Include Vulnerability – [CVE-2009-0825]
  • CMSCart 1.04 Maindatafunctions.PHP SQL Injection Vulnerability – [CVE-2009-0825]
  • CelerBB 0.0.2 Viewforum.PHP SQL Injection Vulnerability – [CVE-2009-0825]
  • GhostScripter Amazon Shop Add_Review.PHP Local File Include Vulnerability – [CVE-2009-0825]
  • GhostScripter Amazon Shop Info.PHP Local File Include Vulnerability – [CVE-2009-0825]
  • GhostScripter Amazon Shop Index.PHP Local File Include Vulnerability – [CVE-2009-0825]
  • GhostScripter Amazon Shop Cart.PHP Local File Include Vulnerability – [CVE-2009-0825]
  • iJoomla Archive Component Index.PHP SQL Injection Vulnerability – [CVE-2009-0825]
  • CoBaLT 1.0 Urun_Listele.ASP SQL Injection Vulnerability – [CVE-2008-6202]
  • CoBaLT 1.0 Urun_Grup_Listele.ASP SQL Injection Vulnerability – [CVE-2008-6202]
  • CoBaLT 1.0 Bayi_Listele.ASP SQL Injection Vulnerability – [CVE-2008-6202]
  • CoBaLT 1.0 Urun.ASP SQL Injection Vulnerability – [CVE-2008-6202]
  • JProfile Gold Index.PHP SQL Injection Vulnerability – [CVE-2008-6202]
  • BlindBlog 1.3.1 Admin.PHP SQL Injection Vulnerability – [CVE-2008-6202]
  • BlindBlog 1.3.1 Comment.PHP SQL Injection Vulnerability – [CVE-2008-6202]
  • BlindBlog 1.3.1 Admin.PHP Local File Include Vulnerability – [CVE-2008-6202]
  • Webformatique Car Manager 2.1 Joomla! Component Index.PHP SQL Injection Vulnerability – [CVE-2008-6202]
  • Easy File Sharing Web Server 4.8 Thumbnail.GHP File Disclosure Vulnerability – [CVE-2008-6202]
  • Webformatique Reservation Manager 1.7 Joomla! Component Index.PHP SQL Injection Vulnerability – [CVE-2008-6202]
  • NovaBoard 1.0.1 Index.PHP Cross-Site Scripting Vulnerability – [CVE-2008-6202]
  • Afian Includer.PHP Directory Traversal Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Page.PHP REDIRECT Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Page.PHP SID Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Page.PHP LOGINCASE Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Page_Arch.PHP LOGINCASE Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Page_Arch.PHP REDIRECT Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Page_Arch.PHP SID Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Login.PHP SID Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Login.PHP REDIRECT Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • Yektaweb Academic Web Tools CMS 1.5.7 Login.PHP LOGINCASE Parameter Cross Site Scripting Vulnerability – [CVE-2008-6202]
  • RitsBlog 0.4.2 Index.PHP NAME Parameter Cross-Site Scripting Vulnerability – [CVE-2008-6202]
  • RitsBlog 0.4.2 Index.PHP BODY Parameter Cross-Site Scripting Vulnerability – [CVE-2008-6202]
  • RitsBlog 0.4.2 Jobs.PHP SQL Injection Vulnerability – [CVE-2008-6202]
  • Blogsa 1.0 Widgets.ASPX Cross Site Scripting Vulnerability – [CVE-2009-0814]
  • eXtplorer 2.0 Include/Init.PHP Local File Include Vulnerability – [CVE-2009-0814]
  • Joomla! and Mambo DigiStore Component Index.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • Graugon PHP Article Publisher 1.0 Index.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • Graugon PHP Article Publisher 1.0 View.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • BlogMan 0.45 Profile.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • BlogMan 0.45 Read.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • EZ-Blog 1.0 Public/View.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • Demium CMS 0.2.1 Urheber.PHP Local File Include Vulnerability – [CVE-2009-0814]
  • Demium CMS 0.2.1 Tracking.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • Irokez Blog 0.7.3.2 Spaw_Control.Class.PHP Remote File Include Vulnerability – [CVE-2009-0814]
  • Irokez Blog 0.7.3.2 Block.Tag.PHP Remote File Include Vulnerability – [CVE-2009-0814]
  • Irokez Blog 0.7.3.2 Sitemap.Scr.PHP Remote File Include Vulnerability – [CVE-2009-0814]
  • Irokez Blog 0.7.3.2 Thumbnail.PHP Remote File Include Vulnerability – [CVE-2009-0814]
  • BannerManager 0.81 Default.ASP SQL Injection Vulnerability – [CVE-2009-0814]
  • Parsi PHP CMS 2.0 Index.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • Golabi CMS Index_Logged.PHP Remote File Include Vulnerability – [CVE-2009-0814]
  • xGuestbook 2.0 Login.PHP SQL Injection Vulnerability – [CVE-2009-0814]
  • Magento 1.2 Index.PHP RETURN Parameter Cross Site Scripting Vulnerability – [CVE-2009-0541]
  • Magento 1.2 Index.PHP EMAIL Parameter Cross Site Scripting Vulnerability – [CVE-2009-0541]
  • Magento 1.2 Index.PHP USERNAME Parameter Cross Site Scripting Vulnerability – [CVE-2009-0541]

This entry was posted in N-Stalker Latest Updates and tagged , . Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us