SECUNIA ADVISORY ID: SA32299

VERIFY ADVISORY: http://secunia.com/advisories/32299/

CRITICAL: Moderately critical

IMPACT: Security Bypass, Cross Site Scripting, Exposure of sensitive information

SOFTWARE:
Opera 5.x - http://secunia.com/advisories/product/82/
Opera 6.x - http://secunia.com/advisories/product/81/
Opera 7.x - http://secunia.com/advisories/product/761/
Opera 8.x - http://secunia.com/advisories/product/4932/
Opera 9.x - http://secunia.com/advisories/product/10615/

DESCRIPTION: Some vulnerabilities have been reported in Opera, which can be exploited by malicious people to conduct script insertion attacks, to bypass certain security restrictions, or to disclose potentially sensitive information. The vulnerabilities are reported in versions prior to 9.61.
 Read More...

SECUNIA ADVISORY ID: SA32314

VERIFY ADVISORY: http://secunia.com/advisories/32314/

CRITICAL: Moderately critical

IMPACT: System access

SOFTWARE: Mantis 1.x: http://secunia.com/advisories/product/5571/

DESCRIPTION: EgiX has discovered a vulnerability in Mantis, which can be exploited by malicious users to compromise a vulnerable system. The vulnerability is confirmed in version 1.1.2 and reported in version 1.1.3. Other versions may also be affected.
 Read More...

SECUNIA ADVISORY ID: SA32245
VERIFY ADVISORY: http://secunia.com/advisories/32245/
CRITICAL: Moderately critical
IMPACT: Unknown

SOFTWARE: Slaytanic Scripts Content Plus 2.x: http://secunia.com/advisories/product/20139/
DESCRIPTION: Some vulnerabilities with an unknown impact have been reported in Slaytanic Scripts Content Plus. The vulnerabilities are caused due to an unspecified error. No further information is currently available. The vulnerabilities are reported in version 2.1.1. Other versions may also be affected.

SOLUTION: Update to version 2.2.0:
PROVIDED AND/OR DISCOVERED BY: Reported by vendor.
ORIGINAL ADVISORY: http://sourceforge.net/project/shownotes.php?release_id=632842

SECUNIA ADVISORY ID: SA32177

VERIFY ADVISORY: http://secunia.com/advisories/32177/

CRITICAL: Highly critical

IMPACT: Security Bypass, Exposure of system information, Exposure of sensitive information, DoS, System access

SOFTWARE:
Opera 5.x - http://secunia.com/advisories/product/82/
Opera 6.x - http://secunia.com/advisories/product/81/
Opera 7.x - http://secunia.com/advisories/product/761/
Opera 8.x - http://secunia.com/advisories/product/4932/
Opera 9.x - http://secunia.com/advisories/product/10615/

DESCRIPTION: Some vulnerabilities have been reported in Opera, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, or potentially compromise a user's system.
 Read More...

Just days after shipping a patch for a dozen serious security holes in Firefox, Mozilla has rushed out another version to fix an annoying password manager bug.

The newest Firefox 3.0.3 basically fixes a problem where users were unable to retrieve saved passwords or save new passwords.

Firefox’s Mike Beltzner explains:
* The symptom is that users who have password data stores with non-ASCII data saved as something other than UTF-8 (more common for people who have saved passwords on IDN domains or non en-US domains) will not be able to access their saved passwords or create any new saved passwords. There is no permanent dataloss, the saved data is just inaccessible.

Also see Bug 454708.

nb1 writes:  

IT security and control firm Sophos today announced the availability of a new service, Sophos WebAlert, providing website administrators with notification if their site is hosting malicious code. Experts at the firm have produced a video demonstrating how the service works in simple terms using children's toys

Full Article