PlanetCreator has reported another critical SQL Injection (vulnerability) on Perfect Magazine : Myanmar Fashion, Entertainment, News, Wrtitings and Asrology for all myanmar people http://www.perfectmagazineonline.com

This vulnerability has been alerted to :- [email protected]

Applications: ———— PlanetCreator’s_Universal_Advanced_Internet_Security_T00L
System Time: ———— (UTC+08:00) Yangoon, Myanmar , 18/09/2010 03:20:20 AM
Host IP: 65.163.13.219
Database: perfectmm

Some Tables are as follow :
pf_team
pf_successnotes
pf_style
pf_story
pf_sayings
pf_remark
pf_poem
pf_person
pf_perfect_news
pf_month_list
pf_mmstory
pf_mm_month
pf_member
pf_member
pf_letterbox
pf_joke
pf_intstory
pf_horoscope
pf_health
pf_global_news
pf_entertainment_news
pf_daylist
pf_coverstory
pf_contents
pf_challenge
pf_beauty
pf_article
pf_advertising
pf_adv_type
pf_adminaccount

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

What is a rootkit?

For me, it is the evolution of the Trojan Horse concept. It is, in these days, a complete package of trojanized system utilities, with some interesting add-on programs, like specially

Read More

What are the user authentications supported by the SSH-2 protocol?

The SSH-2 protocol supports the following user authentications: * Public key authentication (DSA, RSA*, OpenPGP) * Host-based authentication * Password-based authentication Note: SSH-1 supports a wider range of user authentications,

Read More

Critical SQL Injection in All About Myanmar

PlanetCreator reported another Critical SQL injection (vulnerability) on All About Myanmar (Beta) URL : http://www.allaboutmyanmar.com/ SQL injection is a code injection technique that exploits a security vulnerability occurring in the

Read More