Critical SQL Injection in Myanmar Teleport – Myanmar Internet Service Provider (formerly known as BaganNet) – PlanetCreator’s Security Team and Hackers Group

Home / Hacking, News, Security / Critical SQL Injection in Myanmar Teleport – Myanmar Internet Service Provider (formerly known as BaganNet)

Critical SQL Injection in Myanmar Teleport – Myanmar Internet Service Provider (formerly known as BaganNet)

September 22, 2010 PlanetCreator 0 Comments 0 tags

PlanetCreator has reported another critical SQL Injection (vulnerability) on Myanmar Teleport – Myanmar Internet Service Provider (formerly known as BaganNet) http://www.myantel.net.mm/

SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed.

This vulnerability has been alerted to :- [email protected]

Ephoto_Category
Edu_School
Edu_Registration
Edu_Message
dtproperties
DOWNLOADS
DOWNLOAD_RATE
DOWNLOAD_CATEGORY
DIRECTORY
D99_Tmp
D99_REG
D99_CMD
cvform
COUNTRY
CONTACT_US
confirm
COMPANY
CLUB_NOTICE
CLUB_MEMBER
CLUB_FREEBOARD
CLUB_DOWNLOADS
CLUB_CATEGORY
CLUB
Classified_Item
Classified_Category
CHAT_USER
CHAT_ROOM
CHAT_CATEGORY
career_company
CALENDAR_EVENTS
BgSpecial
bgFTW
BaganVote
bagan
badstringlog_1
badstringlog
BAD_WORDS
AVATAR
asean_vote
asean_user
asean_profile
Asean
Artist_Photo
Artist_Bio
ARTIST
APPLICANT_WORK
APPLICANT_PROFICIENCY
APPLICANT_OTHERQC
APPLICANT_EDUCATION
APPLICANT
appform
apoidea
Album_Vote
Album_Picture
Album_News
Album_new
Album_Members
Album_LeftVote
Album_Entry
Album_Center
Album_Category
Album
Admin_Log
accLogs
tbl_PoemSend

If you want to see detail of this vulnerability Click Here (Note :- Registered Member Only- If you are not PlanetCreator.Net Member Sign up Here)

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Critical SQL Injection in Stamps Myanmar

PlanetCreator has reported another critical SQL Injection (vulnerability) on Stamps Myanmar http://www.stampsmyanmar.com and powered by indexmyanmar SQL injection is a code injection technique that exploits a security vulnerability occurring in

Devilzc0de SQL Injection Tool (mysql&mssql)

Ok guys welcome to new product from Devilzc0de, this time we dedicate this all in one sql injection tool for you.So.. what is devilzc0desql? this is a very sophisticated sql

Dangerous IP’s – Do not scan

All the below are FBI controlled Linux servers & IPs/IP-Ranges 207.60.0.0 – 207.60.255.0 The Internet Access Company207.60.2.128 – 207.60.2.255 Abacus Technology207.60.3.0 – 207.60.3.127 Mass Electric Construction Co.207.60.3.128 – 207.60.3.255 Peabody

[webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
on October 1, 2024 at 12:00 am
dizqueTV 1.5.3 - Remote Code Execution (RCE)
[webapps] openSIS 9.1 - SQLi (Authenticated)
on October 1, 2024 at 12:00 am
openSIS 9.1 - SQLi (Authenticated)
[webapps] reNgine 2.2.0 - Command Injection (Authenticated)
on October 1, 2024 at 12:00 am
reNgine 2.2.0 - Command Injection (Authenticated)
[dos] Windows TCP/IP - RCE Checker and Denial of Service
on August 28, 2024 at 12:00 am
Windows TCP/IP - RCE Checker and Denial of Service
[webapps] Invesalius3 - Remote Code Execution
on August 28, 2024 at 12:00 am
Invesalius3 - Remote Code Execution