Flicker is very large photo sharing and photographs management system and its owned by the Yahoo!
Security Researcher named Ibrahim Raafat have found that the Flicker is suffering from the SQL injection and Remote code execution vulnerabilities. He have found Two parameters which where vulnerable to the SQL injection named $page_id and $items.
By exploiting this vulnerability he was able to get the MYSQL root password. He have reported both RCE and SQL injection vulnerabilities to the yahoo and now its patched.
According to the Ibrahim Raafat, most of the web applications are vulnerable to the Blind SQL injection and after the deep research you can find the Direct SQL injection in the web application.
Heartbleed vulnerability have affected many web applications as they are using OpenSSL encryption technique to protect the communication.
Some of the companies that where vulnerable to this Heartbleed bug have successfully updated their server with a patch to fix the Heartbleed bug.
How to protect your self from the Heartbleed vulnerability ?
To protect your self from the Heartbleed vulnerability all you have to do is to change all your passwords. You have to change the passwords of your emails, facebook, twitters and every web applications which uses the OpenSSL encryption technology.
When you are going to install any application in your Smartphone you may have noticed that every time you install the new application it asks the permission to access your data! And in one or another form the application is collecting your personal data. One of the Security Researcher Edward Snowden have found that the most popular game applications like Angry Birds sharing all our secret information with the government agenesis like NSA.
The government intelligence agencies mostly uses the popular Applications and Popular games to get the personal data of the users including the GPS location.
Angry Birds is the most popular game available for the Smartphone and other devices and its being downloaded more then billion times. And the ROVIO have shared the users location earlier this month and that’s the 3rd party advertising company.
Angry Birds sharing your personal data with advertising company
As mentioned in the security firm, the latest version of the Angry Birds works with the ad-mediation platform, Burstly and other advertising networks and they are sharing most of the your personal data like name, gender, number and much more information first of all it grabes the data and stores the data to their cloud and then they shares the data to the other advertisement networks! And that’s how they target the customers