Critical XSS Vulnerability in http://www.yangon.com.mm

Home / Hacking, News, Security / Critical XSS Vulnerability in http://www.yangon.com.mm

August 26, 2010 PlanetCreator 0 Comments 0 tags

PlanetCreator.Net’s Security Team Member has reported another critical XSS vulnerability on MM Search Engine http://www.yangon.com.mm

These are some information from Vulneral Site http://www.yangon.com.mm:

This vulnerability has been alerted to webmaster

Vulnerability Link is as follow http://www.yangon.com.mm/

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Unrestricted File Upload @ Web-Based Teaching System Myanmar

Critical Unrestricted File Upload vulnerability found @ Web-Based Teaching System (Myanmar) URL : http://www.wbts.com.mm Malicious Attacker can upload some file to server without permission ! And It has persistent XSS

Critical persistent xss vulnerabilities at IPAY : Myanmar Online payment Official Site

This evening, I found a fascinatedÂ big bill board “IPAY” http://www.ipay.com.mm at Thamine Junction, Yangon, Myanmar. Then, I said my friend “googl3group” about it, and saidÂ “NO XSS, NO SQL

Expert Tips for Keeping Google Hacks at Bay

The first step for protecting yourself from something is knowing how that something works. In the case of Google hacking, you will have to learn how it can be used

[webapps] PJPROJECT 2.16 - Heap Bufferoverflow
on May 14, 2026 at 12:00 am
PJPROJECT 2.16 - Heap Bufferoverflow
[webapps] ePati Antikor NGFW 2.0.1301 - Authentication Bypass
on May 14, 2026 at 12:00 am
ePati Antikor NGFW 2.0.1301 - Authentication Bypass
[webapps] Apache HertzBeat 1.8.0 - Remote Code Execution
on May 14, 2026 at 12:00 am
Apache HertzBeat 1.8.0 - Remote Code Execution
[webapps] WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI
on May 14, 2026 at 12:00 am
WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI
[webapps] Flowise < 3.0.5 - Missing Authentication for Critical Function
on May 13, 2026 at 12:00 am
Flowise