PlanetCreator has reported another critical SQL Injection (vulnerability) on Perfect Magazine : Myanmar Fashion, Entertainment, News, Wrtitings and Asrology for all myanmar people http://www.perfectmagazineonline.com

This vulnerability has been alerted to :- [email protected]

Applications: ———— PlanetCreator’s_Universal_Advanced_Internet_Security_T00L
System Time: ———— (UTC+08:00) Yangoon, Myanmar , 18/09/2010 03:20:20 AM
Host IP: 65.163.13.219
Database: perfectmm

Some Tables are as follow :
pf_team
pf_successnotes
pf_style
pf_story
pf_sayings
pf_remark
pf_poem
pf_person
pf_perfect_news
pf_month_list
pf_mmstory
pf_mm_month
pf_member
pf_member
pf_letterbox
pf_joke
pf_intstory
pf_horoscope
pf_health
pf_global_news
pf_entertainment_news
pf_daylist
pf_coverstory
pf_contents
pf_challenge
pf_beauty
pf_article
pf_advertising
pf_adv_type
pf_adminaccount

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

CRLF Injection

CRLF Injection Overview CRLF Injection is typically used in HTTP Response Splitting. In the HTTP specification there is a spec stating that the HTTP header is to be split from

Read More

Rooting webhost

r00ting a webhost Introduction: Well taking over a host isnt as easy as you may think. There is a fairly big process involved and a lot of fidiling around. Below

Read More

Password breaking service (Stolen password recovery)

Last month we had about 400 emails asking details on how to break into the email account. The reason many of them put forward are ‘they forgot and got important

Read More