Advanced Electron Forum v1.0.9 Persistent XSS
Monthly Archives: January 2016
Bugtraq: Advanced Electron Forum v1.0.9 RFI / CSRF
Advanced Electron Forum v1.0.9 RFI / CSRF
Panda Security DLL Hijacking
Panda Security’s installers suffer from a DLL hijacking vulnerability.
DSA-3448 linux – security update
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation or denial-of-service.
DSA-3449 bind9 – security update
It was discovered that specific APL RR data could trigger an INSIST
failure in apl_42.c and cause the BIND DNS server to exit, leading to a
denial-of-service.
Advanced Electron Forum 1.0.9 Cross Site Scripting
Advanced Electron Forum version 1.0.9 suffers from a cross site scripting vulnerability.
Art Systems FluidDraw P5/S5 5.3n Binary Planting Arbitrary Code Execution
FluidDraw suffers from a DLL Hijacking issue. The vulnerability is caused due to the application loading libraries (siappdll.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening a related application files (.PRJ, .CIRC, .CT, .DXF, .SYM) located on a remote WebDAV or SMB share.
Joomla Fsave 2.0 Local File Disclosure
Joomla Fsave component version 2.0 suffers from a local file disclosure vulnerability.
Phishing scams spike leads to social engineering campaign
Get Safe Online has launched a major new campaign in the UK to help raise awareness of the dangers of social engineering, as figures suggest more needs to be done to inform the public about this growing nuisance.
The post Phishing scams spike leads to social engineering campaign appeared first on We Live Security.
WhatsApp is Now Free For Lifetime
Good News for WhatsApp users!
The widely popular messaging service is going completely free. And you’ll be able to use WhatsApp without paying a penny.
Old WhatsApp users might not be aware of this, but WhatsApp introduced the subscription fees for its service a few years ago, forcing new users to pay an annual 99 cents (~$1) subscription fee after the first year.
<!– adsense –>
