White Hat Group Discover SQLi Bug Of Israeli CMS

Iranian cyber security experts from White Hat Group have discover SQLi CMS bug:

Y-R-S CMS (of Israel)

A remote sql injection -SQLi- web vulnerability have been discover in official Y-R-S Content Management System 2015-Q4
Vulnerability is allow remote attacker to executes own sql commands to compromise web-application/DBMS -Database Management System-

SQL injection is code injection technique used to attack data application have malicious SQL statements is inserted into entry fields for executions to dump database content to attackers

Full detail is here: http://www.vulnerability-lab.com/get_content.php?id=1644

Bug is discover by main hacker Sajjad Sotoudeh
Hacker page: http://www.vulnerability-lab.com/show.php?user=Sajjad%20Sotoudeh

Other authors of bug discovery is: KamraN HellisH – Dr.RooT – Dr.Repermind – Milad_Inj3ct0r – 4li-3ndG

White Hat Group home: www.white-hg.com

Leave a Reply

Your email address will not be published. Required fields are marked *