MTN Irancell Operator of Iran XSS Vulnerability

Two weeks ago member of Ashiyane group 4tt4ck3r used his strong talent for finding vulnerabilities and this time his significant find was on website of biggest Iranian cellphone company MTN Irancell. You can see evidence of this XSS vulnerability at http://exploit.classicsquad.org/exploit/29 and also at http://sk.uploads.im/PfyUV.png. Few days later he had another success when he identified multiple vulnerabilities in Creative Globe CMS. In this CMS  he discovered SQL injection vulnerability and also cross site scripting vulnerability too. You can see this at http://exploit.classicsquad.org/exploit/33.

Leave a Reply

Your email address will not be published. Required fields are marked *