Security

[remote] – OpenEMR 4.1.1 Patch 14 SQLi Privilege Escalation Remote Code Execution

Posted by deepcore under exploit, m$, Security (No Respond)

OpenEMR 4.1.1 Patch 14 SQLi Privilege Escalation Remote Code Execution

Tags: exploit, function-toggle, remote, Security

[webapps] – Vtiger CRM 5.4.0 (index.php, onlyforuser param) – SQL Injection

Posted by deepcore under exploit, m$, Security (No Respond)

Vtiger CRM 5.4.0 (index.php, onlyforuser param) – SQL Injection

Tags: exploit, function-toggle, references, Security

http://www.namorbun.go.th

Posted by deepcore under defacement (No Respond)

http://www.namorbun.go.th notified by Iran Security Team

Tags: Security, security-team

Apple Security Advisory 2013-09-18-3

Posted by deepcore under Apple, exploit, facebook, iphone, m$, OSX security tools, Privacy, Security, tools, twitter, XSS (No Respond)

Apple Security Advisory 2013-09-18-3 – Xcode 5.0 is now available and addresses a security issue in Git. When using the imap-send command, git did not verify that the server hostname matched a domain name in the X.509 certificate, which allowed a man-in-the-middle attacker to spoof SSL servers via an arbitrary valid certificate. This issue was addressed by updating git to version 1.8.3.1.

Tags: Apple, exploit, Security, ubuntu

Apple Security Advisory 2013-09-18-2

Posted by deepcore under Apple, exploit, facebook, iphone, m$, OSX security tools, Privacy, Security, software, tools, twitter, XSS (No Respond)

Apple Security Advisory 2013-09-18-2 – iOS 7 is now available and addresses Certificate Trust Policy, Core Graphics, Core Media, Data Protection, and various other issues and vulnerabilities.

Tags: Apple, exploit, Security