PlanetCreator has reported another critical SQL Injection (vulnerability) on Perfect Magazine : Myanmar Fashion, Entertainment, News, Wrtitings and Asrology for all myanmar people http://www.perfectmagazineonline.com

This vulnerability has been alerted to :- [email protected]

Applications: ———— PlanetCreator’s_Universal_Advanced_Internet_Security_T00L
System Time: ———— (UTC+08:00) Yangoon, Myanmar , 18/09/2010 03:20:20 AM
Host IP: 65.163.13.219
Database: perfectmm

Some Tables are as follow :
pf_team
pf_successnotes
pf_style
pf_story
pf_sayings
pf_remark
pf_poem
pf_person
pf_perfect_news
pf_month_list
pf_mmstory
pf_mm_month
pf_member
pf_member
pf_letterbox
pf_joke
pf_intstory
pf_horoscope
pf_health
pf_global_news
pf_entertainment_news
pf_daylist
pf_coverstory
pf_contents
pf_challenge
pf_beauty
pf_article
pf_advertising
pf_adv_type
pf_adminaccount

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Log Poisoning

Log poisoning is a technique that not many know about. this technique works only if you can make an LFI of the page. if we say that you call index.php,

You’ve Hired a Hacker (Section 1)

Section 1: Basic Understanding 1.1: Won’t my hacker break into my computer and steal my trade secrets? Point of clarification. There are two communities of people that call themselves ‘hackers’.

Critical Blind SQL injection in ChartNexus.com

PlanetCreator has reported another critical Blind SQL Injection (vulnerability) on http://www.starinvestorrelations.com/ which owned by FiNEX Solutions Pte. Ltd. (“FiNEX Solutions”) powered by http://www.chartnexus.com/ This vulnerability has been alerted to :-