The Iranian hacker group Ashiyane Digital Security Team recently published a number of software vulnerabilities discovered by its members:
– Ehsan Hosseini posted more details on the XSS vulnerability in the content management system Hoosk.
– “The Nonexistant” discovered two CSRF (Cross Site Request Forgery) vulnerabilities in Precurio Intranet and Tiny CMS 1.0b.
– “Adel” discovered a CSRF vulnerability in the Ekattor school management system.
Ashiyane DST posted the details on its website.
Source: Irancybernews.org, November 12, 2015.