Hi, BamarTalk.com’s Webmaster

This is PlanetCreator’s Security Te@am & Hackers Group, PlanetCreator has reported Critical SQL Injection vulnerability on Bamar Talk International Calling Cards – Cheap Call to Myanmar’s Website.

Informed to : ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]

Sent Wed 2/24/2010 7:12 AM
Some of your Web’s Data Information are as follow,

Applications: ————PlanetCreator’s_Universal_Advanced_Internet_Security_T00L
System Time: ———— (UTC+08:00) Kuala Lumpur, Singapore, 2/24/2010 5:56:19 AM
Target:         http://www.bamartalk.com/information.php?info_id=1
Host IP:        67.18.18.10
Web Server:     Microsoft-IIS/6.0
Powered-by:     ASP.NET – PHP/5.2.6
Current User:     root@localhost
Current DB:     voipswitch
System User:     root@localhost
DB User & Pass:     root:*Hidden Pass for Security Reason:localhost

Table Name ———— Columns
users      ———— city, phone, login, email, password
settings   ———— id, name

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

You’ve Hired a Hacker (Section 1)

Section 1: Basic Understanding 1.1: Won’t my hacker break into my computer and steal my trade secrets? Point of clarification. There are two communities of people that call themselves ‘hackers’.

Read More

Dyne’s Hackers List v1.10

0x01 – Definitions: Hacker vs Cracker The New Hacker’s Dictionary defines Hacker as: “A person who enjoys exploring the details of programmable systems and how to stretch their capabilities, as

Read More

XSS The Complete Walkthrough

Author: t0pP8uZz Description: Complete tutorial on XSS methods. Homepage: G0t-Root.net, H4cky0u.org, Milw0rm.com Date: 24/07/07 Chapters: What is XSS? Finding XSS Vulnerbilitys The Basics On XSS Deface Methods Cookie Stealing Filteration

Read More