This whitepaper is a brief introduction to social engineering. Written in Persian.
5a298382338cc4f9bff18be254c57dd6
Whitepaper discussing the anatomy of a null session attack, how it works, and how to prevent it from happening to you. Written in Persian.
e11501a46ae00650982b057c2e97eb3e
Short whitepaper discussing path traversal and bypass methods of exploitation.
cdf93307b1346efd4887071551b67c80
Whitepaper called Introduction to Man-in-the-middle Attacks. Written in Persian.
c6d9c8900cbd54113b00b5e59cfc0a04
The author of this file claims that naming a directory with a .asp extension on IIS 6 will causing all files inside of it to be executed as such.
e7c2f004e3702a7a06318c380b571e83
Sigma Portal suffers from a denial of service vulnerability.
687f60df8bce748ff4659fa051ead197
Firefox version 3.6.7 / SeaMonkey version 2.0.6 clickjacking proof of concept exploits.
7ba30b781e859a4d0fdfeb52ca953e5c
Netscape Browser version 9.0.0.6 clickjacking proof of concept exploit.
d12a9ca278b2ecf8b746b8635c6194c2
Safari Browser version 4.0.2 clickjacking proof of concept exploit.
34be54a6dddf4676c9c3dc41637f8e2c
Opera Browser version 10.60 clickjacking proof of concept exploit.
87c83119a550c886758f7e4e19c5aa2c
Avant Browser version 11.7 build 45 clickjacking proof of concept exploit.
1b845fb206ab0ebe0a7068110689db21
KF Web Server version 3.2.0 suffers from an unauthenticated remote contents change vulnerability.
dc044cbc96d4319272986491ed200da2
Cherokee Web Server version 0.5.3 suffers from directory traversal and source disclosure vulnerabilities.
687f1c69b3062ad2acf418b9fbf658d4
Parallels System Automation (PSA) suffers from a local file inclusion vulnerability.
fffffa59efdefc9f68a4917d71e57d8a
Nginx version 0.8.35 suffers from a source code disclosure vulnerability.
263b62b4701f8cfffea1075eae36bb97
Whitepaper called Introduction to Cross Site Request Forgery. Written in Persian.
eefc0e55d464289d49d50c97dc6d11bc
Smart Douran CMS suffers from a remote file disclosure vulnerability.
1a43aca7b9909f1e23bf431f03b4f42f
Tadbir CMS suffers from a remote shell upload vulnerability.
688e8de043fb1a52f3dcce576d208026
MojeNoo suffers from a remote shell upload vulnerability.
59fb61cf5ea8affaac463aa7da403a72
Pargoon suffers from a remote denial of service vulnerability.
68fee2ba79345aa1b91cf01bf25b99f4
Web Negar suffers from a directory traversal vulnerability.
5d0e62957e4eceeba6efd708dd0ba6dc
Ziggurat CMS suffers from arbitrary file upload, arbitrary file download and cross site scripting vulnerabilities.
27f53f04e334bf80c2dac24b01e530da
Espinas CMS suffers from a remote SQL injection vulnerability.
f880a2a4fbd940230e5b6e329ffb83d9
Easy Page suffers from a cross site scripting vulnerability.
c9e45a20d640cf7ceda95abb8985c5f7
The Joomla Xmap component suffers from a remote SQL injection vulnerability.
7396e2f648562c654968636e5d251e4c