RFD Vulnerability in Google.com
In July a RFD vulnerability in Google.com was discovered by Hosein)root. This hacker has long experience in hacking work with Ashiyane group but in an interview which was published in IT Salam website in February this hacker told dear readers…
Bl4ck M4n Discover Penang XSS And SQLi Bug
Hacker Bl4ck M4n is discover XSS -Cross Site Scripting- And SQLi -SQL Injection- vulnerabilities in Penang CMS: Vuln: http://iedb.ir/exploits-5474.html All vulns find by Bl4ck M4n: http://iedb.ir/author-Bl4ck%20M4n.html Bl4ck M4n is part of T34m D4rkn3ss R00m which have members: Nine9 Safaa Hacker xIL3zr MjHoL…
Persian Hack Team Report Joomla Bug
Hackers of Persian Hack Team is make discover of vulnerability in Joomla CMS: Joomla com_jotloader – Full Path Disclosure Vulnerability Full Path Disclosure (FPD) vulnerabilities enable the attacker to see the path to the webroot/file. e.g.: /home/omg/htdocs/file/ Link is here:…
MTN Irancell Operator of Iran XSS Vulnerability
Two weeks ago member of Ashiyane group 4tt4ck3r used his strong talent for finding vulnerabilities and this time his significant find was on website of biggest Iranian cellphone company MTN Irancell. You can see evidence of this XSS vulnerability at…
Milad Doorbash Make Misfortune Cookie Bug Remover
Iranian cyber capability is shown by like of security researcher and hacker Milad Doorbash Doorbash is make authentication remover of high risk Misfortune Cookie Exploit -RomPager <= 4.34) router authentication remover- Details of all affected device is here Misfortune Cookie is…
Persian Hack Team Discover Open Redirection Vulnerability
Mojtaba MobhaM and T3NZOG4N from Persian Hack Team discovered open redirection vulnerability in indigenous Iranian search engine «Yooz». They found this vulnerability on April 19 2016 and registered it in IEDB.ir and informed directly to ICNA of their discovery. Link: http://iedb.ir/exploits-5090.html
ICSG Discover WP External Links XSS Bug
Iranian Cyber Security Group -ICSG- have find XSS bug in WordPress plugin: WP External Links v1.80 – Cross Site Scripting Details is here and here XSS -Cross Site Scripting- is type of computer security vulnerability found in web applications enable attackers to inject client-sides…
Blackwolf_Iran expose CMS vulnerabilities
Blackwolf_Iran from iranonymous have found SQL injection vulnerabilities in iReadyWeb and Elevel It CMS Vulnerability allow attacker to by pass admin login and upload shell or edit home page For details see here and here Blackwolf_Iran thank Hacker Khan – Mr.Khatar – R4DIC4L
Milad Hacking Find WordPress Theme Reflected XSS
Hacker Milad Hacking Of FullSecurity Team have discover vulnerability: WordPress Goodnews Themes Reflected Cross Site Scripting XSS -Cross Site Scripting- is type of computer security vulnerability found in web applications enable attackers to inject client-sides script into web pages viewed by other users…
Ehsan Hosseini Find RozBlog And SamenBlog CSRF/XSS Bugs
Hacker And security researcher Ehsan Hosseini of Ashiyane Digital Security Team have discover proof of concept -poc- bugs in RozBlog And SamenBlog: RozBlog Weblog Service – Authentication Bypass / Cross Site Request Forgery / Cross Site Scripting SamenBlog Weblog Service…