Critical XSS vulnerability in YouthDreams.Net

Home / Hacking, News, Security / Critical XSS vulnerability in YouthDreams.Net

September 13, 2010 PlanetCreator 0 Comments 0 tags

Security Researcher $@T0R! reported another XSS vulnerability in http://www.youthdreams.net

Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications that enables malicious attackers to inject client-side script into web pages viewed by other users. An exploited cross-site scripting vulnerability can be used by attackers to bypass access controls such as the same origin policy.

Vul: – http://youthdreams.net

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Critical persistent xss vulnerabilities at IPAY : Myanmar Online payment Official Site

This evening, I found a fascinatedÂ big bill board “IPAY” http://www.ipay.com.mm at Thamine Junction, Yangon, Myanmar. Then, I said my friend “googl3group” about it, and saidÂ “NO XSS, NO SQL

Critical Blind SQL injection in ChartNexus.com

PlanetCreator has reported another critical Blind SQL Injection (vulnerability) on http://www.starinvestorrelations.com/ which owned by FiNEX Solutions Pte. Ltd. (“FiNEX Solutions”) powered by http://www.chartnexus.com/ This vulnerability has been alerted to :-

XSS Cheat List

[webapps] Summar Employee Portal 3.98.0 - Authenticated SQL Injection
on December 16, 2025 at 12:00 am
Summar Employee Portal 3.98.0 - Authenticated SQL Injection
[webapps] esm-dev 136 - Path Traversal
on December 16, 2025 at 12:00 am
esm-dev 136 - Path Traversal
[webapps] Pluck 4.7.7-dev2 - PHP Code Execution
on December 8, 2025 at 12:00 am
Pluck 4.7.7-dev2 - PHP Code Execution
[webapps] PluckCMS 4.7.10 - Unrestricted File Upload
on December 3, 2025 at 12:00 am
PluckCMS 4.7.10 - Unrestricted File Upload
[webapps] RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)
on December 3, 2025 at 12:00 am
RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)