All PHPNUKE AND PHP AJAX CMS WORDPRESS SEO

Apache HTTP Server mod_isapi Module Unloading Vulnerability

admin — Thu, 11 Mar 2010 02:14:10 +0000

SECUNIA ADVISORY ID: SA38852

VERIFY ADVISORY: http://secunia.com/advisories/38852/

CRITICALITY: Highly Critical

DESCRIPTION: A vulnerability has been reported in Apache HTTP Server, which can be exploited by malicious people to potentially compromise a vulnerable system. For more information see vulnerability #2 in: SA38776

SOLUTION: Fixed in the SVN repository: http://svn.apache.org/viewvc?view=revision&revision=920961

ORIGINAL ADVISORY: http://httpd.apache.org/security/vulnerabilities_20.html

OTHER REFERENCES: SA38776: http://secunia.com/advisories/38776/

Via:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3799

Renewal4 – New Theme Release For RavenNuke(tm)

admin — Wed, 10 Mar 2010 04:10:34 +0000

I just released my newest theme Renewal4 that’s free to members. I haven’t released a theme in quite a while but now I have the time to start releasing themes regularly.

Renewal4 is a nice theme with matching forums, download and weblink graphics, and more. I rely on the extensive array of RavenNuke(tm) blocks and modules that users can access to help them build up their site. I offer a wide array of themes in different categories that cover most peoples needs.

Get your copy today at http://www.papamikecreations.net registration is free and only takes a few minutes to complete.

I am the first and longest running designer of RavenNuke(tm) themes, stop in and see what I have to offer.

And as always, I say Support RavenNuke(tm) in anyway that you can.

Oh, one more thing. I see some of my themes offered for download at other sites but I need to tell you that I upgrade my themes often so you should always download my themes from my site to ensure you are getting the most recent version.

Thanks, have a nice day!

Via:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3798

Update For Two Vulnerabilities In gzip

admin — Tue, 09 Mar 2010 00:14:35 +0000

SECUNIA ADVISORY ID: SA38846

VERIFY ADVISORY: http://secunia.com/advisories/38846/

CRITICALITY: Moderately Critical

DESCRIPTION: rPath has issued an update for gzip. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user’s system.

Via:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3797

Clan Members 3.0 Updated

admin — Mon, 08 Mar 2010 10:16:16 +0000

Untergang from UDesigns has updated his very popular Clan Members Module to version 3.0. This update is probably the biggest I’ve seen in its short lifespan and it keeps getting better and better. Well done !

Tutorial : Create Realtime Charts With FusionCharts and Ajax

admin — Mon, 08 Mar 2010 05:49:10 +0000

In this tutorial We will create realtime chart data update that reflect to price fluctuation. There are many solutions to do this, but now we will cover using a nice flash charting component called FusionCharts. FusionCharts comes with several edition, but now we will use the FusionCharts Free version. You can download it from http://www.fusioncharts.com/free/. By the time of this writing, FusionCharts Free version is 2.2.

The price fluctuation is visualized with a line type chart and data will be fetched from database every 5 seconds using Ajax call and then display the latest 5 (five) data to the chart without any page refresh. We assume you already familiar with deploying the FusionCharts Free and have experience using prototype.js, since we don’t explain every details of the tools we used in this article. Please refer to FusionCharts Free documentation about deploying the chart and prototype.js documentation about the usage of the library.

Let’s do it

1. You have to download the FusionCharts Free version, extract it, and copy the chart FCF_Line.swf (from the Chart folder) to your web root folder.

2. Copy FusionCharts.js (from JSClass folder) to your web root folder.

3. Download prototype.js from www.prototypejs.org and save it as prototype.js on your web root folder. We will use prototype.js to do the Ajax call.

4. Now prepare the table to store the fictional price fluctuation. Here is the simple table structure. We only need 2 (two) fields.

Via:
http://feedproxy.google.com/~r/AJAXMagazine/~3/iDBKAo9OXg0/tutorial_create_realtime_chart.html

Critical Security Release Announcement From PHPBB Group

admin — Sat, 06 Mar 2010 05:51:16 +0000

From the PHPBB Group:

We are sorry to announce the immediate release of phpBB 3.0.7-PL1 to address a security issue which was introduced in 3.0.7, unfortunately the issue wasn’t noticed during testing and has only surfaced a week after the release of 3.0.7.

We promised working feeds for phpBB 3.0.7. Sadly, we were not able to deliver on that promise – a critical bug in the permission handling for feeds slipped past. To all people who already have updated to 3.0.7, it is of critical importance to update to 3.0.7-PL1. Otherwise, it is possible for users to bypass permission settings under the following circumstances:

- Feeds are enabled

- Any of the posts or topics feeds are enabled

- The unauthorised user – or one of the groups they are a member of – has forum permissions set on a private forum

- If you have excluded a forum from the list of forums that provide feeds, it is unaffected

The fix for the issue is a single line change inside of feed.php, line 525 has changed from:

$forum_ids = array_keys($auth->acl_getf(’f_read’));

to:

$forum_ids = array_keys($auth->acl_getf(’f_read’, true));

Via:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3796

Moving on – the future of phpBB development

admin — Sat, 06 Mar 2010 05:42:24 +0000

Read the full article from the PHPBB Blog at http://blog.phpbb.com/2010/02/18/moving-on-the-future-of-phpbb-development/

Over the last few weeks we have made a few important decisions, that we believe can positively impact phpBB development. These include changes to development infrastructure as well as our development model. I will briefly outline these changes here, more details will be posted on the blog or as an announcement soon.

Via:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3795

Microsoft open-sources clever U-Prove identity framework

admin — Thu, 04 Mar 2010 05:31:15 +0000

U-Prove, a powerful framework that couples strong privacy with high security for online authentication, has been released as an open source preview by Microsoft. Unfortunately, even open source is unlikely to ensure widespread adoption of this clever—and highly desirable—technology

Visual WebGui based web applications automated IDE built with $300,000 savings

admin — Wed, 03 Mar 2010 16:47:47 +0000

Visual WebGui are sharing with us today a new interesting case study for a web applications automated IDE built with Visual WebGUI : Automato.

“Visual WebGui turns web dreams into reality in a very gracious way while Automato makes it even more powerful… No any other ASP.NET framework does it for you” Alexnaldo Santos

Overview

SISMONT Ltda. creates ERP systems in Brazil since 2003 on Windows platform only. Since 2004 the company targets all the systems it designs for the Web platform.

The Automato project was born to integrate different business applications using single development tool, allowing total customization for customers.

The company already offers its accounting system on a Web platform with a competitive production cost thanks to Automato and Visual WebGui. Until the end of 2010, all of SISMONT’s systems will also be offered on Web platform, significantly increasing their potential performance in Brazil.

Via:
http://feedproxy.google.com/~r/AJAXMagazine/~3/UY2arUKJTJ0/visual_webgui_based_web_applic.html

Microsoft’s Operation b49 chokes Waledac botnet

admin — Tue, 02 Mar 2010 06:30:26 +0000

Microsoft’s Digital Crimes Unit has effectively shut down the Waledac botnet, cutting off cybercriminal access to hundreds of thousands of infected Windows computers around the world.

In partnership with security vendors and law enforcement officials, Microsoft implemented “Operation b49″ and moved to the federal courts to get a temporary restraining order cutting off 277 Internet domains believed to be run by criminals as the Waledac bot.

According to Microsoft associate general counsel Tim Cranton, the action quickly and effectively cut off traffic to Waledac at the “.com” or domain registry level, severing the connection between the command and control centers of the botnet and most of its thousands of zombie computers around the world.

Waledac is one of the 10 largest botnets in the US and is responsible to distributing billions of spam messages around the world. According to Microsoft, the botnet is estimated to have infected hundreds of thousands of computers around the world and, prior to this action, was believed to have the capacity to send over 1.5 billion spam emails per day.

Read the entire article at Microsoft’s *Operation b49* chokes Waledac botnet

Via:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3793