Critical XSS Vulnerability in http://www.yangon.com.mm

Home / Hacking, News, Security / Critical XSS Vulnerability in http://www.yangon.com.mm

August 26, 2010 PlanetCreator 0 Comments 0 tags

PlanetCreator.Net’s Security Team Member has reported another critical XSS vulnerability on MM Search Engine http://www.yangon.com.mm

These are some information from Vulneral Site http://www.yangon.com.mm:

This vulnerability has been alerted to webmaster

Vulnerability Link is as follow http://www.yangon.com.mm/

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

How to find the true location of a person from chat room (Yahoo, MSN, Jabber etc)?

How to find the persons IP from chat? How to find a personâ€™s location from MSN, yahoo â€¦ This person is trying to cheat me through chat, how can I

Misconfigured security features or Incorrect use of security

Session cookie is not randomized enoughNumerous applications use a session cookie to maintain the state of a logged in user. The use of authentication to validate the user that has

Wi-Fi Network Loopholes That Hackers Exploit – Plug Them and Avoid Troubles!

With the increasing number of wi-fi home or small office networks mushrooming all over the place, the hackers are having a field day. The hackers break-in at will and carry

[webapps] OpenRepeater 2.1 - OS Command Injection
on December 3, 2025 at 12:00 am
OpenRepeater 2.1 - OS Command Injection
[webapps] MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
on December 3, 2025 at 12:00 am
MobileDetect 2.8.31 - Cross-Site Scripting (XSS)
[webapps] phpIPAM 1.4 - SQL-Injection
on December 3, 2025 at 12:00 am
phpIPAM 1.4 - SQL-Injection
[webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
on December 3, 2025 at 12:00 am
phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
[webapps] Django 5.1.13 - SQL Injection
on December 3, 2025 at 12:00 am
Django 5.1.13 - SQL Injection