Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86_64 version.

WordPress MiwoFTP plugin version 1.0.5 cross site request forgery arbitrary file creation exploit.

WordPress MiwoFTP plugin version 1.0.5 suffers from cross site request forgery and cross site scripting vulnerabilities.

WordPress MiwoFTP plugin version 1.0.5 cross site request forgery arbitrary file deletion exploit.

Hancom is an office suite developer in South Korea. The HanWord processor (also called Hangul a.k.a HWP) is vulnerable to an integer overflow when assigning a long paragraph size value.

This bulletin summary lists eleven Microsoft security bulletins for April, 2015.

This whitepaper focuses on a method of stealing data as a client side script’s identifier (variable or function name). The author describes these attack techniques / browser vulnerabilities and then discuss countermeasures for these issues.

Various security issues relating to symlink attacks and race conditions with Abrt and Apport are documented here.

Panda Gold Protection 2015 version 15.1.0 suffers from an authentication bypass vulnerability.