SECUNIA ADVISORY ID: SA26875

VERIFY ADVISORY: http://secunia.com/advisories/26875/

CRITICAL: Moderately critical

IMPACT: Cross Site Scripting, Manipulation of data, Exposure of sensitive information

WHERE: >From remote

SOFTWARE: Styles Demo 1.x (module for phpBB) - http://secunia.com/product/15765/

DESCRIPTION: nexen has discovered two vulnerabilities in the Styles Demo module for phpBB, which can be exploited by malicious people to conduct cross-site scripting attacks and SQL injection attacks.
 Read More...

SECUNIA ADVISORY ID: SA26840

VERIFY ADVISORY: http://secunia.com/advisories/26840/

CRITICAL: Highly critical

IMPACT: Security Bypass, System access

WHERE: >From remote

SOFTWARE:
Shop-Script FREE 1.x - http://secunia.com/product/15759/
Shop-Script FREE 2.x - http://secunia.com/product/15760/

DESCRIPTION: Raz0r has discovered some vulnerabilities in Shop-Script FREE, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
 Read More...

floppydrivez writes:  

http://www.clan-themes.co.uk/ Lobo Links is a new seo friendly web directory of internet resources. While the site is still brand new. I encourage submitters to get listed while the price is still very reasonably low. If you decide to list your site you should know that 75% of all listing commissions are put back into promoting the directory and in turn your listing will grow with the directory.

Submit your Link

I also created a phpnuke module to list the directory structure. A cool concept, but still in the beta stages.

DEMO HERE

DOWNLOAD

SECUNIA ADVISORY ID: SA26779

VERIFY ADVISORY: http://secunia.com/advisories/26779/

CRITICAL: Highly critical

IMPACT: Manipulation of data, System access

WHERE: >From remote

SOFTWARE:
Microsoft Visual Studio 6 Professional - http://secunia.com/product/409/
Microsoft Visual Studio 6 Enterprise - http://secunia.com/product/408/

DESCRIPTION: shinnai has reported some vulnerabilities in Microsoft Visual Studio, which can be exploited by malicious people to overwrite arbitrary files or potentially compromise a vulnerable system.
 Read More...

SECUNIA ADVISORY ID: SA26820

VERIFY ADVISORY: http://secunia.com/advisories/26820/

CRITICAL: Highly critical

IMPACT: Manipulation of data, System access

WHERE: >From remote

SOFTWARE: WinSCP 4.x - http://secunia.com/product/14323/

DESCRIPTION: Kender.Security has discovered a vulnerability in WinSCP, which can be exploited by malicious people to manipulate certain files on a user's system and potentially to compromise a vulnerable system.
 Read More...

kenetix writes:  

Hi everyone, I'm pleased to announce the release of my latest product - Instadigi, an automatic forum posting script. This script is suitable for people trying to kick-start a forum and do not intend to invest lots of time and money into hiring forum posters to populate the board.

What does the script do?
The script automatically generates discussion topics for forums/discussion boards based on user-specified keywords. The user has total control over the amount of posts to generate and 'who' the topic posters are. Content generated is 'human generated', meaning this script is NOT a botting program. Content is actual human input.

Which forum systems are supported?
Currently only PHP-Nuke and PHPBB2 are supported. Vbulletin and Invisionboard are currently under development, and are scheduled for release within the next few days.

How much does it cost?
Only $70.00 per domain one time payment