The Kankun Smart Socket device and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between the device and the app. The communication happens over UDP. An attacker on the local network can use the same key to encrypt and send unsolicited commands to the device and hijack it.
9225a407cd8c8dd1c678631cb1e646a383b42ee99ca1ea8aa1e039b735e9be08
Multiple bits of search functionality in rediff.com suffer from cross site scripting vulnerabilities.
59d63836bd264f54d9d95ed8c77b0c5c2d42aa6cbf21b6126306234ea151c41c
Kosmix.com, the web search engine, suffers from a cross site scripting vulnerability.
8718783775cdb9e9ba414d910bb66769cf945a867d9e31c81ff4f99cc8e8a579
Idea Cellular suffered from a SQL injection vulnerability.
58db50ea20a4e0d8945ec934cad0bb3336aad9c5172ea8e6a05907837d051921