Hacks
Hackers Manipulate Grader.com of Twitter - compromised Twitter tools in order to send out SPAM tweets.
Falkland Islands website hacked to display pro-Argentinian flag and messages - defacement/hacktivism.
Attacks
Vulns
Google Buzz Security Flaw - XSS flaw.
SANS @RISK List
Web Application - Cross Site Scripting - 10.8.21 - Coppermine Photo Gallery "upload.php" Cross-Site Scripting
- 10.8.22 - vBulletin Multiple Cross-Site Scripting Vulnerabilities
- 10.8.23 - Joomla! sh404SEF Component URI Cross-Site Scripting
- 10.8.24 - Cisco Collaboration Server "LoginPage.jhtml" Cross-Site Scripting
- 10.8.25 - RSA SecurID WebID Cross-Site Scripting
Web Application - SQL Injection
- 10.8.26 - Newgen OmniDocs "ForceChangePassword.jsp" SQL Injection
- 10.8.27 - CommodityRentals Books/eBooks Rental Software "index.php" SQL Injection
- 10.8.28 - Joomla "com_zcalendar" Component "eid" Parameter SQL Injection
- 10.8.29 - Joomla! AWD Wall Component "cbuser" Parameter SQL Injection
- 10.8.30 - Joomla! "com_jbook" Component "Itemid" Parameter SQL Injection
- 10.8.31 - Joomla! JQuarks Component SQL Injection
- 10.8.32 - Qualiteam X-Cart "cart.php" SQL Injection
- 10.8.33 - CommodityRentals Vacation Rental Software "index.php" SQL Injection
- 10.8.34 - Joomla! "com_acmisc" Component "Itemid" Parameter SQL Injection
- 10.8.35 - Alqatari "lesson.php" SQL Injection
Web Application
- 10.8.36 - Drupal Graphviz Filter Module Arbitrary Command Execution
- 10.8.37 - SAP WebDynpro Runtime Unspecified HTML Injection
- 10.8.38 - vBulletin 2.3 Cross-Site Scripting and SQL Injection Vulnerabilities
- 10.8.39 - Interspire Knowledge Manager "callback.snipshot.php" Arbitrary File Creation
- 10.8.40 - Joomla! Webee Component SQL Injection and HTML Injection Vulnerabilities
- 10.8.41 - Joomla! Kide Shoutbox Security Bypass
- 10.8.42 - Joomla! EasyBook Component Multiple HTML Injection Vulnerabilities
- 10.8.43 - Joomla! F!BB Component SQL Injection and HTML Injection Vulnerabilities
No comments:
Post a Comment