Secunia Security Advisory - A vulnerability has been reported in Built2Go PHP Shopping, which can be exploited by malicious people to conduct SQL injection attacks.
aab0fdd86a3660e8081f04f7be51d1633cef5734b2bdd9542871e9740d1bde09
Secunia Security Advisory - Fedora has issued an update for seamonkey. This fixes a weakness and some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, and compromise a user's system.
d7626aee13854246c24d9efcc749dc1f567fe3101e95ceed6e3c297972166de2
Secunia Security Advisory - Russ McRee has discovered a vulnerability in TheHostingTool, which can be exploited by malicious users to conduct SQL injection attacks.
79d9a4510ae7a49619009f69d7d31652a8f1e3f4a0ccbbc6ada2b0ca6ad1d015
Vacation Rental Script version 4.0 suffers from a cross site request forgery vulnerability.
c30f280646d08cfa400a0fa299992495d4aaea9dc7db33071db0a4491209962a
Mandriva Linux Security Advisory 2010-251 - Security researchers Yosuke Hasegawa and Masatoshi Kimura reported that the x-mac-arabic, x-mac-farsi and x-mac-hebrew character encodings are vulnerable to XSS attacks due to some characters being converted to angle brackets when displayed by the rendering engine. Google security researcher Michal Zalewski reported that when a window was opened to a site resulting in a network or certificate error page, the opening site could access the document inside the opened window and inject arbitrary content. An attacker could use this bug to spoof the location bar and trick a user into thinking they were on a different site than they actually were. Mozilla security researcher moz_bug_r_a4 reported that the fix for could be circumvented permitting the execution of arbitrary JavaScript with chrome privileges. Security researcher regenrecht reported via TippingPoint's Zero Day Initiative that JavaScript arrays were vulnerable to an integer overflow vulnerability. Various other security issues were addressed in Firefox.
d819a50e787340febec4c69fbf5ea3dad7d69ed9850f29dd083c8b955fddbc88