Dr.3v1l Discover Local Stack Overflow PoC Vulnerability
Iranian hacker Dr.3v1l –Hossein Hezami- have discover FastStone MaxView 2.8 (.jpg) local Stack Overflow PoC Vulnerability This vulnerability is caused by stack buffer overflow when parsing display properties parameter. Malicious third party have trigger execution of arbitrary code within the context of…
IeDb Team Discover Multiple And SQLi CMS Bugs
Iranian Exploit Database Team –IeDb– have discover multiple CMS And SQLi -SQL Injection- vulnerabilities: ENH Media Cms Sql Injection Vulnerability -Detail: http://iedb.ir/exploits-3273.html– Bagwar Softwares Cms Multiple Vulnerability -Detail: http://iedb.ir/exploits-3272.html– Productsurf Cms Sql Injection Vulnerability -Detail: http://iedb.ir/exploits-3271.html– WebdesignJiNi Cms Sql…
Iranian Security Researcher Find Huawei Wimax Backdoor
Iranian security researcher –Koorosh Ghorbani– have discover hidden backdoor in Huawei Wimax CPE Bm632w as use in many wifi WiMAX routers. Vulnerability is hidden user with UserLevel = 0 have full ATP Access on Telnet and SSH. IEDB link is…
FullSecurity Team Report WordPress Vulnerabilities
Iranian hacking and security team FullSecurity –www.fullsecurity.org– have discover 2 vulnerability in WordPress is here: WordPress 4.2.1 XSS/Code Execution Exploit Uses Cross Site Scripting -XSS- Vulnerabilities in WordPress Plugins have execute code with administrator privilege All version of WordPress vulnerable…
Meganet And Maxnet ADSL Routers Vulnerability And ZYXEL configuration editor/Web Server DoS
Iranian security researcher Koorosh Ghorbani of company 8thbit have discover vulnerability: Meganet And Maxnet Adsl Routers Unattended Admin access vulnerability ZYXEL remote configuration editor / Web Server DoS Full details of Meganet And Maxnet vulnerability here: http://iedb.ir/exploits-3019.html Full details of ZYXEL vulnerability here: http://iedb.ir/exploits-3022.html
IRaNHaCK Security Discover Et-Chat 3.0.6 XSS Vulnerability
Iranian hacking group Iranhack Security Team –Www.IranHack.Org– have discover XSS flaw in Et-Chat This vulnerability allows attacker to grab admin cookie and login with admin account In post on website www.fullsecurity.org here: http://fullsecurity.org/acc/01 Iranhack greetz from PacketStorm post here: Mr.XpR , V30Sharp ,…
Ashiyane Discover WordPress Aspose-Cloud Vulnerability
Ashiyane Digital Security Team have discover vulnerability in WordPress Aspose-Cloud-eBook-Generator Plugin The vulnerability discovered by Ashiyane team member ACC3SS And is tested on both Windows and Linux Vendor Homepage is here : https://wordpress.org/plugins/aspose-cloud-ebook-generator/ Full detail of vulnerability is seen here: http://iedb.ir/exploits-2927.html
Black-HG Member Net.Edit0r Discover RCI In vBulletin
Iranian hacker Net.Edit0r And member of Black-HG – http://www.black-hg.org/cc/– have discovered Remote Code Injection -RCI- in vBulletin forum platform Full detail is here See here for web site of Black Hat Group.
Iran Cyber-Team WebTester File Upload Vulnerability
Iranian hacking team Iran Cyber-Team –www.iran-cyber.org– have published WebTester File Upload Vulnerability on iedb.ir is seen here Published on Iranian Exploit DataBase = http://IeDb.Ir [2015-02-25] See more detail of team is here
IEDB Team Discover N.E.T. E-Commerce Group XSS Vulnerability
New Cross Site Scripting -XSS- vulnerability have discovered in N.E.T. E-Commerce Group site by Iranian Exploit DataBase Team See: http://iedb.ir/exploits-2747.html for detail of vulnerability Amir from IEDB Team discover flaw and greats go to: # Greats : Bl4ck M4n –…