Yatanarpon Web Portal is being hacked!

Home / Hacking, News, Security / Yatanarpon Web Portal is being hacked!

November 24, 2010 PlanetCreator 0 Comments 0 tags

According to PeopleMediaVoice, Nation Web Portal of Myanmar ( Yatanarpon Web Portal) is being hacked by a hacker group named themselves “Humpty Dumpty”, defaced home page at around 12:30 AM local time yersterday, 13/11/2010.

At the same day, they hacked another gov news agency site The Mirror Online News Paper (KyayMon) http://www.kyaymon.info/.

Now, Yatanarpon Portal is currently under maintenance, and they are trying to discover their site!

Wat i wana talk is, they are not care security in their web site, We informed XSS, SQL Injection, Bypass Login from Myanmar Web Portal last month http://www.planetcreator.net/2010/10/critical-sql-injection-in-yatanarpon-web-portal/ . I know they fixed some vul but not at all.

Now, security vulnerability are still existing in some sub domain of Yatnarpon Web Portal, such as http://job.yatnarpon.com.mm and so on…

If you want to see detail of this vulnerability Click Here (Note :- Registered Member Only- If you are not PlanetCreator.Net Member Sign up Here)

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Is your IP Leaking? Find out here

The first link shows your IP.http://www.whatismyip.com/This site will show more information like your town…http://www.geobytes.com/IpLocator.htm?GetLocationIf you pass this test your Proxys / Programs are doing their job…https://grc.com/x/ne.dll?bh0bkyd2 Privacy Check – checks

Open University Malaysia (OUM)â€™s Web Vulnerability

PlanetCreator had informed OUMâ€™s XSS Vulnerability CODE http://www.planetcreator.net/2009/11/critical-xss-vulnerability-on-open-university-malaysia/ But nobody cares , How come they all wana do like this so shit! Where is OUMâ€™s Wemaster? Sleeping @ Camp? Yeah,

Critical xss vulnerabilities at classified listings site Ads.com.mm

PlanetCreator has reported another critical XSS Vulnerability on classified listings site Ads.com.mm Cross Site Scripting is a client-side attack where an attacker can craft a malicious link, containing script- code

[webapps] Boss Mini v1.4.0 - Local File Inclusion (LFI)
on March 3, 2026 at 12:00 am
Boss Mini v1.4.0 - Local File Inclusion (LFI)
[webapps] mailcow 2025-01a - Host Header Password Reset Poisoning
on March 3, 2026 at 12:00 am
mailcow 2025-01a - Host Header Password Reset Poisoning
[webapps] WeGIA 3.5.0 - SQL Injection
on March 3, 2026 at 12:00 am
WeGIA 3.5.0 - SQL Injection
[webapps] Easy File Sharing Web Server v7.2 - Buffer Overflow
on March 3, 2026 at 12:00 am
Easy File Sharing Web Server v7.2 - Buffer Overflow
[webapps] WordPress Backup Migration 1.3.7 - Remote Command Execution
on March 3, 2026 at 12:00 am
WordPress Backup Migration 1.3.7 - Remote Command Execution