Advertisements

vulnerability

WordPress

How to prevent CSRF vulnerability in WordPress plugins and themes

Recently the folks at Secunia contacted me regarding a vulnerability in my plugin Contextual Related Posts. Contextual Related Posts is a powerful plugin for WordPress that allows you to display a list of related posts on your website and in your feed. The plugin comes with a tonne of options and inbuilt caching that can possibly increase user retention.

Advertisements

Firefox most vulnerable application of 2008

In a report released by Bit9, Firefox has topped the list of vulnerable applications with 10 vulnerabilities which could allow remote attackers to execute arbitrary code via buffer overflow,malformed URI links, documents, JavaScript and third party tools. Bit9 is an application whitelisting vendor that centrally controls which applications and devices are allowed to operate, thereby preventing malicious software and data leakage. The report lists 12 of the most vulnerable Windows applications which required end user intervention in patching the vulnerability.

Scan for Windows Vulnerability Scanner

Protector Plus – Windows Vulnerability Scanner checks your system for Windows Vulnerabilities. It guides you to update with the right patch to make your system secure. This program is updated once a month to detect all the vulnerabilities discovered.

Beware: Potential vulnerability in Adobe Reader

Secunia reports that Piotr Bania has found a vulnerability in Adobe Reader, which can potentially be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to an unspecified error when processing PDF files. This can be exploited to cause a heap corruption and may allow execution of arbitrary code when a specially-crafted PDF file is opened.