Security Weakness of Emerge (Malaysia Web Hosting)

Home / Hacking, News, Security / Security Weakness of Emerge (Malaysia Web Hosting)

November 12, 2010 PlanetCreator 0 Comments 0 tags

No man is infallible, Nobody safes @ online and There’s no complete secure protection in this Cyberwar! During these days I’m really busy with my own business! In my dream and my life, I’ld really happy by building Hosting Services but it’s hard to do that kind of business in Myanmar bcoz ISP’s slow and unstable connection! It’s hard to do Own Web Hosting in this Myanmar lol: whatever, I tried to search to some hosting and domain services at malaysia via online…

I know this Emerge Web Hosting when I’m working at malaysia, Affordability price, Reliability, Scalability and Rich features. But I found a big security hole in their web server when I clicked http://www.webhosting.com.my/member/

IIS 7.0 error!

Sure, no secure configuration on their web server!

Everybody can login and crack their server’s web contents,

Hackers can try to upload files, shell and trojan with normal ftp program such as CuteFTP

Ok, tat’all.

I’ll post this in public after they fixed their server. 😀 if not they’ll b xx by Black Hat!

…..

Well, Security Hole has been fixed after had hacked by BurmeseHackers yesterday!. Tat’s why i changed this private post to public!

Explore More

Credit card fraud! How to protect ourselves from this identify theft?

Credit card or the plastic money has given us lot of convenience on the good side and hell lot of head ache on the bad side. Credit card fraud as

critical SQL injection (vulnerability) on Dhamma Web http://www.dhammaweb.net

PlanetCreator.Netâ€™s Security Team member zai22 reported another critical SQL injection (vulnerability) on Dhamma Web http://www.dhammaweb.net SQL injection is a code injection technique that exploits a security vulnerability occurring in the

Online Services

Gathering information: (set) http://www.subnetonline.com/ (set) http://ping.eu/ (ping, dns_tools, traceroute, web_tools) http://serversniff.net/ (DIG / nslookup, whois, traceroute) http://networking.ringofsaturn.com/Tools/ (whois, dns_tools, service_scan, traceroute) http://centralops.net/co/DomainDossier.aspx (whois, dns_tools, domain_search) http://www.whois.ws/ (whois, dns_tools) http://www.robtex.com/ (whois)

[local] Realtek rtl819x - Local Privilege
on May 27, 2026 at 12:00 am
Realtek rtl819x - Local Privilege
[webapps] Casdoor 3.54.1 - Arbitrary File Write via Path Traversal
on May 27, 2026 at 12:00 am
Casdoor 3.54.1 - Arbitrary File Write via Path Traversal
[webapps] OpenCATS 0.9.7.4 - SQL Injection
on May 27, 2026 at 12:00 am
OpenCATS 0.9.7.4 - SQL Injection
[hardware] MeiG Smart FORGE_SLT711 - OS Command Injection
on May 27, 2026 at 12:00 am
MeiG Smart FORGE_SLT711 - OS Command Injection
[webapps] scramble - Remote Code Execution
on May 27, 2026 at 12:00 am
scramble - Remote Code Execution