WordPress Plugin DM Albums 1.9.2 vulnerabilities
DM Albums™ is an inline photo album/gallery plugin that displays high quality images and thumbnails perfectly sized to your blog.
Two vulnerabilities have been made public:
1. Stack released a “remote file disclosure vulnerability” (Low-Medium Risk Level)
2. Septemb0x released a “remote file include vulnerability” (Critical Risk Level)
An attacker could use these vulnerabilities to potentially gain full access [...]
WordPress Plugin Related Sites 2.1 Blind SQL Injection Vulnerability
A critical vulnerability has been discovered in the WordPress Plugin Related Sites plugin. An exploit is available in the wild and available on Milw0rm, making this attack easier to exploit.
Although, the vulnerability says that version 2.1 is vulnerable. You should assume previous versions are vulnerable as well.
BlogSec have confirmed that the current version (at the [...]
Critical phpMyAdmin Vulnerabilities Discovered
A number of bloggers and web site owners use phpMyAdmin for easy database administration. Two critical vulnerabilities have been discovered that could be used to gain full access to the affected server.
Exploits have already been made publicly available, see GNUCITIZEN for an example:
http://172.16.211.10/phpMyAdmin-3.0.1.1//config/
config.inc.php?p=phpinfo();
Description
Setup script used to generate configuration can be fooled using a crafted POST [...]
Blogs and tweets in a moving business trend part1
Avoid popularity if you would have peace – Abraham Lincoln
Mozilla started a blog back in 2008, after breaking the guiness world records for the most downloads in 24 hours.
Can anyone guess what blogging platform they are using? Yes you probably guessed it if you read the title of this post.
Mozilla stands out with a few [...]
Tiananmen Square continues to bleed hope for freedom of speech
“internet interprets censorship as damage and routes around it.” - EFF co-founder John Gilmore
2005, Yahoo provides information that helped Chinese officials convict a journalist accused of leaking state secrets. Apparently, Shi Tao, a 37-year-old writer for the Dangdai Shang Bao, released a “state secret” which contained a message to Shi’s newspaper warning journalists of the [...]
