Critical XSS Vulnerability in http://www.yangon.com.mm

Home / Hacking, News, Security / Critical XSS Vulnerability in http://www.yangon.com.mm

August 26, 2010 PlanetCreator 0 Comments 0 tags

PlanetCreator.Net’s Security Team Member has reported another critical XSS vulnerability on MM Search Engine http://www.yangon.com.mm

These are some information from Vulneral Site http://www.yangon.com.mm:

This vulnerability has been alerted to webmaster

Vulnerability Link is as follow http://www.yangon.com.mm/

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Fake Login Page with XSS – IFRAME – | C B Bank – Online Electricity Billing Payment System(GBPS)

When XSS vulnerabilities on bank websites are exploited by phishers, is too late to undo the unwanted consequences. The phishers were able to inject a modified login form onto the

How to “become” a google bot

What you’ll need: Firefox, The Modify Headers extension for firefox. What you can do: Many sites allow google to look into their forums, in order to get more traffic by

The Null Byte Exploit

Many web forums have mushroomed on internet and they are setup in a jiffy,so they wont pay much attention to security. An older exploit I m discussing here is The

[webapps] Pluck 4.7.7-dev2 - PHP Code Execution
on December 8, 2025 at 12:00 am
Pluck 4.7.7-dev2 - PHP Code Execution
[webapps] phpIPAM 1.4 - SQL-Injection
on December 3, 2025 at 12:00 am
phpIPAM 1.4 - SQL-Injection
[webapps] MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
on December 3, 2025 at 12:00 am
MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
[webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
on December 3, 2025 at 12:00 am
phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
[webapps] Django 5.1.13 - SQL Injection
on December 3, 2025 at 12:00 am
Django 5.1.13 - SQL Injection