Bad news for just about every WordPress blogger out there. It has been found that the latest version 3.2.1 of WordPress is vulnerable to XSS injection attack which allows users to inject malicious JavaScript as a result of failure in sanitizing the comments field. Without discussing much about what this vulnerability could do to your blog I will jump to how it works and the solution.

In the past few years a lot of social apps have been developed which has changed our life completely. Now a days, we have 2 lives, one which is the actual physical life and the other is a virtual life which we live through these social apps. Facebook has become a major part of this virtual life. Nobody wants anyone else to take control of their life. Since our virtual life is online, we need to take care that it is not hacked by any stupid hacker and used for their own benefit.

Facebook, the biggest social network with 500 million users, provides an interface to hit an unsuspecting crowd with malware and viruses. These viruses aren’t very difficult to detect if you are cautious enough. These Facebook viruses appear on your wall in forms of a bizarre or eye-catching stories and videos and once the user has clicked/liked the link, it is already late. The next step will be getting rid of your Facebook virus which is a time-consuming process. Its better to avoid spam messages and trojan viruses in the first place.

SQL injection is an attack in which malicious code is inserted into strings that are later passed to an instance of SQL Server for parsing and execution. Any procedure that constructs SQL statements should be reviewed for injection vulnerabilities because SQL Server will execute all syntactically valid queries that it receives. Even parameterized data can be manipulated by a skilled and determined attacker.

I received a lot of email from the users who wanted to spy on their Girl friends, Boy friends, Spouse, Children or Employee. The software I am going to review today is a solution to all these problems. Using this spy software you will be able to know what your partners are doing. It will allow you to see exactly what your teenager is doing online remotely. It will also allow you to monitor any employee who uses the company computer(s) remotely.

Hello Friends,

By now you might be knowing Rafay Baloch the writer of the previous article “Hack a Website Using Remote File Inclusion” and I am sure you would like to have more hacking stuff from him. Well now you don’t have to wait for him to post individual articles because he has compiled an E-book which contains all the interesting hacks. The best part of this e-book is that he has written it in such a manner that even a 5th grade kid can become a Hacker.

Adobe has released a Flash Player update that fixes a flurry of vulnerabilities including a critical zero-day flaw (CVE-2010-1297) that has been actively exploited in attacks since last week. In addition to the numerous security patches, the new Flash player 10.1.53.64 version brings major functionality and performance improvements.

A new attack on a Flash bug has surfaced that would give attackers control of a victim’s computer after crashing it, reports PC World. Adobe put out a Security Advisory about this on June 4. It is categorized as a critical issue and all operating systems with Flash are vulnerable including Windows, Linux, and Apple and it is also found in the recent versions of Reader and Acrobat.