Limny CMS version 2.0 suffers from a cross site request forgery vulnerability that allows for a malicious attacker to have an administrator account created. Proof of concept code included.

NinkoBB version 1.3RC4 change / add administrator cross site request forgery exploit.

Advanced Management For Services Sites remote add administrator exploit.

phpLiteAdmin version 1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

JSPMySQL Administrador version 1 suffers from cross site request forgery and cross site scripting vulnerabilities.

A vulnerability in Windows DHCP was found on Windows OS versions ranging from Windows 2000 through to Windows server 2003. This vulnerability allows an attacker to remotely overwrite DNS, Gateway, IP Addresses, routing, WINS server, WPAD, and server configuration with no user interaction. Successful exploitation of this issue will result in a remote network configuration overwrite. Microsoft acknowledged the issue but has indicated no plans to publish a patch to resolve it.

This Metasploit module exploits a format string vulnerability in the LPRng print server. This vulnerability was discovered by Chris Evans. There was a publicly circulating worm targeting this vulnerability, which prompted RedHat to pull their 7.0 release. They consequently re-released it as "7.0-respin".

Xenotix is a keylogger for windows that is written in Python. It has the ability to send logs remotely.

South African Energy Minister Tina Joemat-Pettersson said her department wants to address weaknesses in the process of commissioning renewable-power projects.

Clean energy stocks and the market in general rebounded strongly in August. My broad market benchmark of small cap stocks, IWM, rose 4.5 percent, returning to positive territory up 1.7 percent for the year. My clean energy benchmark PBW also jumped back into the black with an 11.1 percent gain for the month and 10.8 percent for the year to date.

It was good news for renewable energy when President Barack Obama in June proposed carbon dioxide restrictions on existing power plants. It is even better news now that he may use the plan to leverage an international climate accord.

Yield-cos have been grabbing headlines lately. Typically, large utilities spin off their high-yield alternative energy operations into separate smaller companies called yield-cos. These new companies are then taken public to attract individual and institutional investors.

The threat of climate change is driving China and the U.S. — frequent rivals and the world’s two largest greenhouse-gas emitters — to collaborate on dozens of potential clean-energy breakthroughs.

California and Quebec, which together created the largest carbon market in North America this year, may come away empty-handed as they woo northeastern U.S. states to join their system.

Scotland’s decision to vote no to independence from the United Kingdom of Great Britain and Northern Ireland has elicited a collective sigh of relief from energy sector players. Those companies with significant investments in Scottish renewable energy assets had understandably been anxious over the uncertainty that an independent Scotland would engender, for example potentially changing the rules on support measures for renewable energy investment north of the border.

Worries including the conflict with ISIL, Ebola, and economic slow-down in Europe, sent the stock market down in the month to October 3rd, with small cap stocks and clean energy stocks falling even farther than the large cap S&P 500.