The Iranian security firm White Hat Group have discovered an SQL injection bug in the Israeli Y-R-S Content Management System (CMS). The bug, discovered by team member Sajjad Sotoudeh, enables the injection of malicious code into database managed by this system. The group posted information on the bug on its website.
Source: Irancybernews.org, November 30, 2015.