More here: [webapps / 0day] – Chevereto Upload Script Cross Site Scripting / User Enumeration
>> AUTHOR: deepcore
Read the article: [webapps / 0day] – Travelon Express CMS v6.2.2 – Multiple Web Vulnerabilities
Apple Security Advisory 2012-05-09-2 – Safari 5.1.7 is now available and addresses multiple WebKit related vulnerabilities.
Apple Security Advisory 2012-05-09-1 – OS X Lion v10.7.4 and Security Update 2012-002 is now available and addresses multiple security issues. An issue existed in the handling of network account logins. The login process recorded sensitive information in the system log, where other users of the system could read it.
http://thakhamtrang.go.th/chat/crypt0.htm notified by Ashiyane Digital Security Team
http://huataphanhospital.go.th/rssimages/crypt0.htm notified by Ashiyane Digital Security Team
Secunia Security Advisory – Multiple vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user’s system.
View the original here: [webapps / 0day] – BaglerCMS – SQLi/XSS Vulnerability
Read More: [webapps / 0day] – Cisco Linksys WRT54GL CSRF Change Admin Password
Follow this link: [remote exploits] – Firefox 7/8 (<= 8.0.1) nsSVGValue Out-of-Bounds Access Vulnerability