FootBall Cms (view_table_lig.php?group) XSS Vulnerability

### IRANIAN THE BEST HACKERS IN THE WORLD ## ## ## XSS Vulnerability ## ## FootBall Cms (view_table_lig.php?group) ## ### #

Dow Group (dynamic.php?id) (sub.php?solutioncat_id) (news_desc.php?id) (product.php?id) Remote SQL injection Vulnerability

### IRANIAN THE BEST HACKERS IN THE WORLD ## ## ## Remote SQL injection Vulnerability ## ## Dow Group (dynamic.php?id) (sub.php?solutioncat_id) (news_desc.php?id) (product.php?id) ##

ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution Vulnerability

ZDI-11-243: WebKit ContentEditable Inline Style Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-243 July 27, 2011 -- CVE ID: CVE-2011-0232 -- CVSS: 9, (AV:N/AC:L/Au:N/C:C/I:P/A:P) -- Affected Vendors: WebKit -- Affected Products: WebKit -- TippingPoin

ZDI-11-242: Apple Safari Rendering Object Body Detachment Remote Code Execution Vulnerability

ZDI-11-242: Apple Safari Rendering Object Body Detachment Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-242 July 27, 2011 -- CVE ID: CVE-2011-0255 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Apple -- Affected Products: Apple Safari

ZDI-11-241: Webkit setAttributes attributeChanged Remote Code Execution Vulnerability

ZDI-11-241: Webkit setAttributes attributeChanged Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-241 July 27, 2011 -- CVE ID: CVE-2011-0254 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: WebKit -- Affected Products: WebKit -- Tipping

ZDI-11-240: Apple Safari Webkit SVG Marker Remote Code Execution Vulnerability

ZDI-11-240: Apple Safari Webkit SVG Marker Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-240 July 27, 2011 -- CVE ID: CVE-2011-1453 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Apple -- Affected Products: Apple WebKit -- TippingPoin

ZDI-11-239: Apple Safari Webkit FrameOwner Element Remote Code Execution Vulnerability

ZDI-11-239: Apple Safari Webkit FrameOwner Element Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-239 July 27, 2011 -- CVE ID: CVE-2011-0233 -- CVSS: 7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P) -- Affected Vendors: Apple -- Affected Products: Apple WebKit -- Vu

[ MDVSA-2011:121 ] samba

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2011:121 http://www.mandriva.com/security/ _

Redirection vulnerability in MBoard

Vulnerability ID: HTB23029 Reference: http://www.htbridge.ch/advisory/redirection_vulnerability_in_mboard.html Product: MBoard Vendor: PHPJunkyar ( http://www.phpjunkyard.com ) Vulnerable Version: 1.3 and probably prior Tested on: 1.3 Vendor Notification: 06 July 2011 Vulnerability Type: Redirec

Multiple XSS in GBook PHP guestbook

Vulnerability ID: HTB23028 Reference: http://www.htbridge.ch/advisory/multiple_xss_in_gbook_php_guestbook.html Product: GBook PHP guestbook Vendor: PHPJunkyar ( http://www.phpjunkyard.com ) Vulnerable Version: 1.7 and probably prior Tested on: 1.7 Vendor Notification: 06 July 2011 Vulnerability

Chrome Web Solutions (details.php?cat_id) (listing_more.php?id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD ## ## ## Remote SQL injection Vulnerability ## ## Chrome Web Solutions (details.php?cat_id) (listing_more.php?id) ##

Solutiontech (product.php?cat_id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD ## ## ## Remote SQL injection Vulnerability ## ## Solutiontech (product.php?cat_id) ## ##

iCube Lab (product_details.php?cat_id) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD ## ## ## Remote SQL injection Vulnerability ## ## iCube Lab (product_details.php?cat_id) ## #

G2webCMS (products.php?cat_id) (member-profile.php?profile) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD ## ## ## Remote SQL injection Vulnerability ## ## G2webCMS (products.php?cat_id) (member-profile.php?profile) ##

[ MDVSA-2011:120 ] freetype2

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2011:120 http://www.mandriva.com/security/ _

SA500 vulnerabilities - details

Hi Advisory by Cisco was published a few days ago (Bugtraq ID: 48810). Now more details: 1. Unathenticated access to web management (any user - including admin). Due to blind SQLi in the login form of web management (port 443, https, login field, embedded sqlite DB), there is possible to obtain:

Agent Image (news_details.php?news_ID) Remote SQL injection Vulnerability

### IRANIAN THE BEST HACKERS IN THE WORLD ## ## ## Remote SQL injection Vulnerability ## ## Agent Image (news_details.php?news_ID) ## #

ESA-2011-021: EMC Data Protection Advisor sensitive information disclosure vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ESA-2011-021: EMC Data Protection Advisor sensitive information disclosure vulnerability. EMC Identifier: ESA-2011-021 CVE Identifier: CVE-2011-1742 Severity Rating: CVSS v2 Base Score: 7.2 (AV:L/AC:L/Au:N/C:C/I:C/A:C) Affected products: EMC SW:

ESA-2011-024: EMC Captiva eInput multiple vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ESA-2011-024: EMC Captiva eInput multiple vulnerabilities. EMC Identifier: ESA-2011-024 CVE Identifier: CVE-2011-1743, CVE-2011-1744 Affected products: EMC SW: EMC Captiva eInput 2.1.1 Vulnerability Summary: EMC Captiva eInput contains two v

[SECURITY] [DSA 2286-1] phpmyadmin security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2286-1 secur...@debian.org http://www.debian.org/security/ Thijs Kinkhorst July 26, 2011