The U.S. failure in Iraq has been even more damaging than Vietnam because the opponent was punier and the imperial ambitions even greater.

continue reading.....

Does anybody really think the Mark Foley affair is about protecting children?

continue reading.....

Bush’s defenders say he’s just an honest guy who gets lots of bad information but the evidence points to a leader who wants his subordinates to give him a steady supply of "talking points" that can be used to achieve his goals whether the arguments are true, half true or totally false.

continue reading.....

Despite the AFL-CIO split following the 2004 election, labor unions are gearing up for the November elections like never before.

continue reading.....

Bush’s defenders say he’s just an honest guy who gets lots of bad information but the evidence points to a leader who wants his subordinates to give him a steady supply of "talking points" that can be used to achieve his goals whether the arguments are true, half true or totally false.

continue reading.....

The U.S. failure in Iraq has been even more damaging than Vietnam because the opponent was punier and the imperial ambitions even greater.

continue reading.....

continue reading.....

continue reading.....

Continuing with the series of tools I’ve been posting on source code auditing and application security, here is PMD a Java Source Code Scanner.

PMD scans Java source code and looks for potential problems like:

Possible bugs – empty try/catch/fi…

continue reading.....

Re: Nucleus Core v3.23 – Remote File Include

continue reading.....

Re: CentiPaid <= 1.4.2 [$class_pwd] Remote File Include

continue reading.....

Re: Free Rainbow Tables.com

continue reading.....

Re: freenews—> fileinclude


>> Advertisement <<

ALERT: “How A Hacker Launches A Blind SQL Injection Attack Step-by-Step”!” – White Paper
Blind SQL Injection can deliver total control of your server to a hacker giving them the ability to read, write and manipulate all data stored in your backend systems! Download this *FREE* white paper from SPI Dynamics for a complete guide to protection!

https://download.spidynamics.com/1/ad/bsq.asp?Campaign_ID=701600000004c29

continue reading.....

Info World: Future-proof your IT security “Small, targeted incursions are the next wave of attacks compromising enterprise networks”

continue reading.....

Myth PVR: How MythTV Commercial Flagging Works “There are three key indicators”

continue reading.....

Security Tracker: Sophos Anti-Virus Bugs in Processing Petite Archives, RAR Archives, and CHM Files “Let Remote Users Deny Service”

continue reading.....

CIO Today: Analyst Questions MS Office Antipiracy “Could Microsoft be hurting itself with its new Office Genuine Advantage program?”

continue reading.....

US CERT: Backdoors and Holes in Network Perimeters “A Case Study for Improving Your Control System Security” (pdf)

continue reading.....

UNISOR CMS suffers from a SQL injection vulnerability that can be used to gain administrative privileges.

continue reading.....

GestArt vbeta 1 and prior suffer from a remote file inclusion vulnerability in /gestArt/aide.php.

continue reading.....

The Joomla extended_registration mod suffers from a remote file inclusion vulnerability.

continue reading.....

TorrentFlux 2.1 doesn’t properly sanitize user input passed via the dir GET variable thus allowing anyone to get a list of files anywhere on the system.

continue reading.....

[ GLSA 200610-15 ] Asterisk: Multiple vulnerabilities


>> Advertisement <<

ALERT: “How A Hacker Launches A Blind SQL Injection Attack Step-by-Step”!” – White Paper
Blind SQL Injection can deliver total control of your server to a hacker giving them the ability to read, write and manipulate all data stored in your backend systems! Download this *FREE* white paper from SPI Dynamics for a complete guide to protection!

https://download.spidynamics.com/1/ad/bsq.asp?Campaign_ID=701600000004c29

continue reading.....

Multiple Remote File Include

continue reading.....

CORE FORCE R0.95 released!

continue reading.....

The Metasploit Framework is an advanced open-source platform for developing, testing, and using exploit code. The Framework will run on any modern system that has a working Perl interpreter, the Windows installer includes a slimmed-down version of the Cygwin environment.

continue reading.....

RFIDIOt is a python library for exploring RFID devices. It currently drives a couple of RFID readers made by ACG, called the HF Dual ISO and the LFX. Includes sample programs to read/write tags and the beginnings of library routines to handle the data structures of specific tags like MIFARE(r).

continue reading.....

Nucleus Core v3.23 suffers from a remote file inclusion vulnerability in media.php.

continue reading.....

PunBB 1.2.13 suffers from multiple vulnerabilities including SQL injection and local file inclusion.

continue reading.....

Mandriva Linux Security Advisory MDKSA-2006-192: The CGI library in Ruby 1.8 allowed a remote attacker to cause a Denial of Service via an HTTP request with a multipart MIME body that contained an invalid boundary specifier, which would result in an infinite loop and CPU consumption.

continue reading.....