PlanetCreator has reported another critical SQL Injection (vulnerability) on Perfect Magazine : Myanmar Fashion, Entertainment, News, Wrtitings and Asrology for all myanmar people http://www.perfectmagazineonline.com

This vulnerability has been alerted to :- [email protected]

Applications: ———— PlanetCreator’s_Universal_Advanced_Internet_Security_T00L
System Time: ———— (UTC+08:00) Yangoon, Myanmar , 18/09/2010 03:20:20 AM
Host IP: 65.163.13.219
Database: perfectmm

Some Tables are as follow :
pf_team
pf_successnotes
pf_style
pf_story
pf_sayings
pf_remark
pf_poem
pf_person
pf_perfect_news
pf_month_list
pf_mmstory
pf_mm_month
pf_member
pf_member
pf_letterbox
pf_joke
pf_intstory
pf_horoscope
pf_health
pf_global_news
pf_entertainment_news
pf_daylist
pf_coverstory
pf_contents
pf_challenge
pf_beauty
pf_article
pf_advertising
pf_adv_type
pf_adminaccount

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Hacking a Windows 2000 system through IPC$

1: Scanning for open Win2k systems2: Connecting to the IPC$3: Connecting and using Computer Management.4. Disable NTLM5: Starting the Telnet service6: Creating user accounts and adding them to a group7:

Read More

What is BlackIce Defender?

BlackIce Defender is a Host-Based Intrusion Detection System (HIDS). It provides a firewall that detects, reports, and blocks all suspected access attempts. When any intrusion is detected, it provides a

Read More

The Null Byte Exploit

Many web forums have mushroomed on internet and they are setup in a jiffy,so they wont pay much attention to security. An older exploit I m discussing here is The

Read More