Great Reviews!Need help setting up your website, installing Apache, PHP, MySQL, or RavenNuke(tm)?Need help customizing or designing scripts?Please contact us via the Contact Us option for further details and pricing.
SOFTWARE: Microsoft Windows Media Player 11.x - http://secunia.com/product/11280/
DESCRIPTION: A vulnerability has been reported in Windows Media Player, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error when handling sampling rates. This can be exploited via a specially crafted audio file streamed from a server-side playlist (SSPL). Successful exploitation may allow execution of arbitrary code.
Posted by Raven on Tuesday, September 09, 2008 @ 18:02:09 EDT (916 reads) (Read More... | 1960 bytes more | Score: 0)
Google patches *critical* Chrome code execution flaws
From ZDNet Blogs The first security patch for Google’s new Chrome browser is out, fixing at least two “critical” vulnerabilities that put Windows users at risk of code execution attacks.
The patch, which is rolled out automatically via Chrome’s auto-update feature, also addresses two additional security vulnerabilities — the carpet-bombing issue and a denial-of-service flaw that could lead to browser crashes and data loss.
Posted by Raven on Tuesday, September 09, 2008 @ 11:46:00 EDT (803 reads) ( | Score: 0)
Kenetix icon to png converter. Extract PNG images from icon files.
kenetix writes "Hi everyone,
I'm pleased announce the release of a new tool to the community - An icon to png converter. This tool basically allows you to extract the PNG images within the .ico file. All you need to do is upload the icon file and you will be able to download converted copies of the PNG files directly from the website. To access this tool, visit: This site
To make things simpler, I've also released a PHP-Nuke block that allows users to upload the icon file directly to the server for conversions. To download this block, simply visit: Kenetix.net Downloads Section (no registration required). For more resources for PHP-Nuke such as themes, modules, and blocks, feel free to visit my community site here at: www.kenetix.net
Enjoy and have a great day!"
Posted by Raven on Tuesday, September 09, 2008 @ 11:39:44 EDT (1071 reads) ( | Score: 0)
SOFTWARE: Zen Cart 1.x - http://secunia.com/product/3488/
DESCRIPTION: James Bercegay has reported two vulnerabilities in Zen Cart, which can be exploited by malicious people to conduct SQL injection attacks. Successful exploitation requires in both cases that "magic_quotes_gpc" is disabled. The vulnerabilities are reported in versions 1.2.0d to 1.3.8a.
Posted by Raven on Monday, September 08, 2008 @ 17:12:14 EDT (1191 reads) (Read More... | 1504 bytes more | Score: 0)
SWAT RavenNuke(tm) theme now available!
trunks writes "PHP-Clans.com would like to announce our SWAT RavenNuke(tm) theme has now been released and is now available for purchase in our theme store.
We have it on special for a month too, so BUY NOW before its too late! $24.99!!
Feel free to take a look at our other clan themes in our store too, or suggest a theme to be designed by our clan themers in our community forums.
Remember these themes ARE phpnuke compatible also.
Visit www.PHP-Clans.com Now!"
Posted by Raven on Monday, September 08, 2008 @ 05:04:48 EDT (734 reads) ( | Score: 0)
Malware and spam attacks exploiting Picasa and ImageShack
"Could a simple flash file redirector pushing fake security software actually trick a large number of users? Of course, especially when the files are hosted at legitimate services, the message localized to a native language, and the links spammed to millions of users."
Posted by Raven on Friday, September 05, 2008 @ 20:40:43 EDT (713 reads) ( | Score: 0)
Xtrato Designs New Theme Shop
Xtrato writes "Hello Fellow Members of php nuke community , I'm here to announce to all the our Team , Xtrato Designs , has now completed the new shop for our commercial themes, we invite you all to come and enjoy this new creation.
We would also like to announce that we have new plans for public themes for everyone to enjoy once again.
The new shop site is located Xtrato Designs New Theme Shop. Please note that we will have free themes added to our shop :).
Posted by Raven on Friday, September 05, 2008 @ 13:57:51 EDT (944 reads) ( | Score: 0)
PROWHS releases Pro Forms v2.0.0
DBF_Tim writes "Available Now! PRO Forms v2.0.0. 13 different input types Over 50 different admin controlled options Operates on PHP Nuke database for website integration
Create the custom forms your site needs. Send them as emails, and/or post them to the forums. Read more for a list of some of the features available.
"
Posted by Raven on Friday, September 05, 2008 @ 13:28:10 EDT (1174 reads) (Read More... | 6715 bytes more | Score: 0)
DoS vulnerability hits Googles Chrome, crashes with all tabs
Whoa! Google Chrome has crashed. Restart now? While Google’s Chrome team is cheering, Rishi Narang from Evil Fingers is typing and releasing a proof of concept for a denial of service vulnerability that is successfully crashing the Chrome browser with all tabs.
Websense® Security Labs(TM) ThreatSeeker(TM) Network has discovered a new replica wave of fake celebrity news being sent out via spam emails. Similar to previous attacks related to 'MSNBC.com Breaking News ' and 'Bogus CNN Custom Alerts ', these emails contain links to a malicious Web page on a compromised site, that is designed to encourage users to download a malicious application posing as a video codec. This malicious Web page also holds Iframes leading to an exploit site.
Over the last few days, the ThreatSeeker Network has seen huge volumes of spam wrapped up in CNN and MSNBC themed templates. Recently, email alerts listing different popular events and news articles also encouraged users to download a video codec, which was actually a malicious file.
The malicious payload is only accessed when the user clicks on! the 'READ FULL STORY' link, which takes them to a Web page on a compromised site named index97.html, which issues a pop-up encouraging users to download a 'missing' video codec, a file called video98.exe.
Here are a few examples of the varied subjects we have seen in this campaign:
Sensational news. Check the message.
Breaking news! Be the first to know.
Very important news.
Astonishing Please take a look.
Sensational information inside.
Check this out. This is a bomb
This is really great news. Please check.
Websense Messaging and Websense Web Security customers are protected against this attack.