Security Alert to BamarTalk.com (Web Vulnerability)

Home / Hacking, News, Security / Security Alert to BamarTalk.com (Web Vulnerability)

February 24, 2010 PlanetCreator 0 Comments 0 tags

Hi, BamarTalk.comâ€™s Webmaster

This is PlanetCreatorâ€™s Security Te@am & Hackers Group, PlanetCreator has reported Critical SQL Injection vulnerability on Bamar Talk International Calling Cards – Cheap Call to Myanmarâ€™s Website.

Informed to : ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]’

Sent Wed 2/24/2010 7:12 AM
Some of your Webâ€™s Data Information are as follow,

Applications: â€”â€”â€”â€”PlanetCreatorâ€™s_Universal_Advanced_Internet_Security_T00L
System Time: â€”â€”â€”â€” (UTC+08:00) Kuala Lumpur, Singapore, 2/24/2010 5:56:19 AM
Target: Â Â Â Â Â Â http://www.bamartalk.com/information.php?info_id=1
Host IP:Â Â Â Â Â Â 67.18.18.10
Web Server: Â Â Â Microsoft-IIS/6.0
Powered-by: Â Â Â ASP.NET – PHP/5.2.6
Current User: Â Â Â root@localhost
Current DB: Â Â Â voipswitch
System User: Â Â Â root@localhost
DB User & Pass: Â Â Â root:*Hidden Pass for Security Reason:localhost

Table Name â€”â€”â€”â€” Columns
usersÂ Â Â Â Â â€”â€”â€”â€” city, phone, login, email, password
settingsÂ Â â€”â€”â€”â€” id, name

We hope that your security staff will look into this issue and fix it as soon as possible.

Explore More

Critical Blind SQL injection in ChartNexus.com

PlanetCreator has reported another critical Blind SQL Injection (vulnerability) on http://www.starinvestorrelations.com/ which owned by FiNEX Solutions Pte. Ltd. (“FiNEX Solutions”) powered by http://www.chartnexus.com/ This vulnerability has been alerted to :-

critical SQL injection (vulnerability) on Burmese Classic http://www.burmeseclassic.com

PlanetCreator.Netâ€™s Security Team member zai22 reported another critical SQL injection (vulnerability) on Burmese Classic http://www.burmeseclassic.com SQL injection is a code injection technique that exploits a security vulnerability occurring in the

Critical XSS Vulnerability in Thanyawzin – Myanmar Online Friends Community http://www.thanyawzin.com/

PlanetCreator has reported another Critical XSS Vulnerability in Thanyawzin – Myanmar Online Friends Community http://www.thanyawzin.com/ Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications

[webapps] WordPress OrderConvo 14 - Path Traversal
on June 1, 2026 at 12:00 am
WordPress OrderConvo 14 - Path Traversal
[webapps] Drupal Core 10.5.5 - Error-Based SQL Injection
on June 1, 2026 at 12:00 am
Drupal Core 10.5.5 - Error-Based SQL Injection
[webapps] YAMCS yamcs-core 5.12.7 - LDAP Injection
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - LDAP Injection
[webapps] YAMCS yamcs-core 5.12.7 - User Enumeration
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - User Enumeration
[webapps] YAMCS yamcs-core 5.12.7 - No Rate Limiting
on May 30, 2026 at 12:00 am
YAMCS yamcs-core 5.12.7 - No Rate Limiting