isfahan-asairyu.ir XSS vulnerability

Vulnerable URL: http://isfahan-asairyu.ir/info/searchrun.asp?keyword=toto%22%3E%3Csvg%2Fonload%3Dalert%28document.domain%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 02.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknow...

isfahan-city.locopoc.com XSS vulnerability

Vulnerable URL: http://isfahan-city.locopoc.com/q-'-alertOPENBUGBOUNTY-' Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...

Stuxnet's First Five Victims Provided Path to Natanz

Stuxnet’s first five victims were a carefully crafted list of targets that ultimately provided the attackers with the road map they needed to get inside a uranium enrichment plant in Natanz, Iran and disrupt the country’s nuclear program. Cobbled together from clues left behind by the infamous...

PHP Melody 1.9 CSRF Vulnerabilities

An attacker may force the users of a web application to execute actions of the attacker's choosing. A successful CSRF exploit can compromise end user data and operation in case of normal user. If the targeted end user is the administrator account, this can compromise the entire web application. P...

PHP Melody 1.0 Cross Site Request Forgery

PHP Melody 1.9 CSRF vulnerabilitie ------------------------------------------------------------ == Description == - Software link: http://www.dl.seven7soft.net/script/PHPMELODY1.9.zip - Affected versions: version 1.9 .other versions might be affected as well. - Vulnerability discovered by: Mehdi...

IBSng all version Cross-Site Scripting Vulnerability

================= APA-IUTcert ================= Title: IBSng all version Cross-Site Scripting Vulnerability Vendor: www.parspooyesh.com Type: Cross-Site Scripting Vulnerability Fix: N/A ================== nsec.ir ================= Description: Input passed via the "str" parameter to...

IBSng Cross Site Scripting

================= APA-IUTcert ================= Title: IBSng all version Cross-Site Scripting Vulnerability Vendor: www.parspooyesh.com Type: Cross-Site Scripting Vulnerability Fix: N/A ================== nsec.ir ================= Description: Input passed via the "str" parameter to...

Yektaweb CMS Cross Site Scripting

================= IUT-CERT ================= Title: YEKTAWEB CMS XSS Vulnerability Vendor: www.yektaweb.com Dork: Powered by Academic Web Tools AWT - Yektaweb Collection Type: Input.Validation.Vulnerability cross-Site scripting Fix: N/A ================== nsec.ir ================= Description:...

Zigurrat CMS SQL Injection

================= IUT-CERT ================= Title: Zigurrat CMS SQL Injection Vulnerability Vendor: www.farsi-cms.com Dork: Design by Tagfa Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir ================= Description: ------------------ Zigurrat CMS is ...

Zigurrat CMS SQL Injection Vulnerability

================= IUT-CERT ================= Title: Zigurrat CMS SQL Injection Vulnerability Vendor: www.farsi-cms.com Dork: Design by Tagfa Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir ================= Description: ------------------ Zigurrat CMS is ...

Eshopbuilde CMS SQL Injection

================= IUT-CERT ================= Title: Eshopbuilde CMS SQL Injection Vulnerability Vendor: www.eshopbuilder.ir Dork: Design by Satcom Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir ================= Description: ------------------ Eshopbuild...

Eshopbuilde CMS SQL Injection Vulnerability

No description provided by source. ================= IUT-CERT ================= Title: Eshopbuilde CMS SQL Injection Vulnerability Vendor: www.eshopbuilder.ir Dork: Design by Satcom Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir =================...

Chavoosh CMS SQL Injection Vulnerability

================= IUT-CERT ================= Title: Chavoosh CMS SQL Injection Vulnerability Vendor: www.chavoosh.com Dork: Design by chavoosh Co Type: Input.Validation.Vulnerability SQL Injection Fix: N/A ================== nsec.ir ================= Description: ------------------ Chavoosh is a...