Unrestricted File Upload @ Web-Based Teaching System Myanmar
Unrestricted File Upload @ Web-Based Teaching System Myanmar

Critical Unrestricted File Upload vulnerability found @ Web-Based Teaching System (Myanmar) URL : http://www.wbts.com.mm Malicious Attacker can upload some file to server without permission ! And It has persistent XSS vulnerability. Cross Site Scripting is a client-side attack where an attacker can craft a malicious link, containing script- code which is then executed within the […]

Continue reading »
Hacked Information and Proof of Concept  @ PlanetCreator.net
Hacked Information and Proof of Concept @ PlanetCreator.net

“Hacking” In this category, We’re going to post Hacker’s proof-of-concept. Unless you know how to hack, you can not defend yourself from hackers. We’ll know how hack hacks and how they got hacked. So, share your hacked info as following and email to theplanetcreator<-at->gmail.com < Your Nick Name > < Proof-of-Concept > Note: No PoC, […]

Continue reading »
Timing Attacks with HTML5
Timing Attacks with HTML5

HTML 5 and related technologies bring a whole slew of new features to web browsers, some of which can be a threat to security and privacy. This paper describes a number of new timing attack techniques that can be used by a malicious web page to steal sensitive data from modern web browsers, breaking cross-origin […]

Continue reading »