Critical XSS Vulnerability in http://www.yangon.com.mm

Home / Hacking, News, Security / Critical XSS Vulnerability in http://www.yangon.com.mm

August 26, 2010 PlanetCreator 0 Comments 0 tags

PlanetCreator.Net’s Security Team Member has reported another critical XSS vulnerability on MM Search Engine http://www.yangon.com.mm

These are some information from Vulneral Site http://www.yangon.com.mm:

This vulnerability has been alerted to webmaster

Vulnerability Link is as follow http://www.yangon.com.mm/

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Misconfigured security features or Incorrect use of security

Session cookie is not randomized enoughNumerous applications use a session cookie to maintain the state of a logged in user. The use of authentication to validate the user that has

Extensive SQL Injection Tutorial

( This is one of the most extensive and most usefull tutorials about this subject I’ve seen read this and you’ll be sure to get a beter understanding! ) TABLE

How to prevent SQL Injection

SQL Injection: What It Is There was once a famous doctor that had it completely right: never trust your patients. Now this doctor may have only been a sitcom doctor

[remote] Microchip TimeProvider 4100 (Configuration modules) 2.4.6 - OS Command Injection
on April 4, 2025 at 12:00 am
Microchip TimeProvider 4100 (Configuration modules) 2.4.6 - OS Command Injection
[webapps] ABB Cylon Aspect 3.07.01 - Hard-coded Default Credentials
on April 3, 2025 at 12:00 am
ABB Cylon Aspect 3.07.01 - Hard-coded Default Credentials
[remote] Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure
on April 3, 2025 at 12:00 am
Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure
[webapps] Webmin Usermin 2.100 - Username Enumeration
on April 3, 2025 at 12:00 am
Webmin Usermin 2.100 - Username Enumeration
[webapps] ABB Cylon Aspect 3.07.02 - File Disclosure (Authenticated)
on April 3, 2025 at 12:00 am
ABB Cylon Aspect 3.07.02 - File Disclosure (Authenticated)