PlanetCreator has reported Critical XSS vulnerability on Official Portal of Kuala Lumpur, Malaysia Web Site,

http://www.planetcreator.net/2009/09/criti…aysia-web-site/

and

http://www.xssed.com/mirror/64058/

but nobody takes action ~~~ How come?

Hello, DBKL’s Staffs! Are you just looking for your license fees? (Yeah- I paid 300RM for my company and 100RM for your Teh Tarik (Coffe` Fees), cos if you don’t pay money to DBKL, you won’t get license as well…

tongue.gif

) …

Don’t just going to around and finding some funds for urself, come up and check out ur web! Many Hackers are watching .Gov websites!….

This is second time!

Applications: ———— PlanetCreator’s_Universal_Advanced_Internet_Security_T00L
System Time: ———— (UTC+08:00) Kuala Lumpur, Singapore, 1/30/2010 11:01:56 PM
Microsoft SQL Server 2000 – 8.00.2050 (Intel X86) Mar 7 2008 21:29:56 Copyright © 1988-2003 Microsoft Corporation
Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

Databases: master
————tempdb
————model
————msdb
————pubs
————Northwind
————DBKL
————penjaja
————dbkl_test
————dbkl_datakeyin
————lesendmg

This is your Tables & Columns

Download Tables & Columns ! http://www.planetcreator.net/images/mmso/dbkl.txt

We hope that their security staff will look into this issue and fix it as soon as possible.

Explore More

Log Poisoning

Log poisoning is a technique that not many know about. this technique works only if you can make an LFI of the page. if we say that you call index.php,

ModSecurity

ModSecurity is a web application firewall (WAF). With over 70% of attacks now carried out over the web application level, organisations need all the help they can get in making

Security Alert to BamarTalk.com (Web Vulnerability)

Hi, BamarTalk.com’s Webmaster This is PlanetCreator’s Security Te@am & Hackers Group, PlanetCreator has reported Critical SQL Injection vulnerability on Bamar Talk International Calling Cards – Cheap Call to Myanmar’s Website.