Critical XSS vulnerability in YouthDreams.Net

Home / Hacking, News, Security / Critical XSS vulnerability in YouthDreams.Net

September 13, 2010 PlanetCreator 0 Comments 0 tags

Security Researcher $@T0R! reported another XSS vulnerability in http://www.youthdreams.net

Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications that enables malicious attackers to inject client-side script into web pages viewed by other users. An exploited cross-site scripting vulnerability can be used by attackers to bypass access controls such as the same origin policy.

Vul: – http://youthdreams.net

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Basic Remote File Inclusion

Basic Remote File Inclusion DefinitionRemote file inclusion, commonly known as RFI is a form of attack where the attacker trys to inject there own php code inside your php app’s.

Infection via HTML

Edit the code on what and how you need it, and yes this is detectableÂ in many cases, but you could insert a small FUD downloader to beÂ downloaded via

China’s â€˜Green Dam-Youth Escortâ€™ Software

Green Dam Youth Escort is the censor ware developed and distributed by Chinese government to filter â€˜harmfulâ€™ content. Here are some details about the working of the software. â€˜Green Dam-Youth

[webapps] YAMCS yamcs-core 5.12.7 - LDAP Injection
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - LDAP Injection
[webapps] YAMCS yamcs-core 5.12.7 - No Rate Limiting
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - No Rate Limiting
[webapps] YAMCS yamcs-core 5.12.7 - User Enumeration
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - User Enumeration
[remote] Notepad++ 8.9.6 - Arbitrary Code Execution
on May 30, 2026 at 12:00 am
Notepad++ 8.9.6 - Arbitrary Code Execution
[remote] Wing FTP Server 8.1.3 - Authenticated Remote Code Execution
on May 29, 2026 at 12:00 am
Wing FTP Server 8.1.3 - Authenticated Remote Code Execution