vulnerabilities

http://www.huffingtonpost.com/entry/adobe-flash-ransomware-attacks_us_57078053e4b0fc257c335950 Flash should die already. It just keeps on going with major vulnerabilities. Likely browsers will become even more restrictive and throw more warnings about flash. I wonder how long before browsers...

The registration form has a username validation function. it seems this can be abused by attackers to find out what accounts are present on the site. The attacker can run a script to try millions of possible usernames to get a member list. I have recently encountered such attack on my vbulletin...