Search

Traffic File Update - April 2013

This Traffic IQ Professional update for April 2013 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for April 2013

251 Application Exploits

ActFax 5.01 '@F506' RAW Server Buffer Overflow Vulnerability S
ActFax 5.01 '@F506' RAW Server Buffer Overflow Vulnerability_1 S
ActFax 5.01 '@F605' RAW Server Buffer Overflow Vulnerability S
ActFax 5.01 '@F605' RAW Server Buffer Overflow Vulnerability_1 S
Adaptcms Config.Php Question Parameter SQL Injection Vulnerability S
Advantech Studio And Indusoft Web Studio 'Ntwebserver.Exe' Directory Traversal Vuln (SCADA) S
Aktiv Player '.wma' File Denial of Service Vulnerability S
Allmediaserver String SEH Buffer Overflow Vulnerability S
Apache Rave User RPC API Information Disclosure Vulnerability S
Arrowchat External.Php File Include Vulnerability S
Arrowchat Pages_General.Php Cross-Site Scripting Vulnerability S
Asteriskguru Queue Statistics Error.Php Cross-Site Scripting Vulnerability S
AWS XMS Importer.Php Directory Traversal Vulnerability S
AWS XMS Importer.Php Directory Traversal Vulnerability_1 S
Backupbuddy Plugin For Wordpress Importbuddy.Php Information Disclosure Vulnerability S
BlazeVideo HDTV Player '.PLF' File Remote Buffer Overflow Vulnerability S
CAM2PC Cam2pc.Exe Buffer Overflow Vulnerability S
CAM2PC Cam2pc.Exe Buffer Overflow Vulnerability_1 S
CAM2PC Cam2pc.Exe Buffer Overflow Vulnerability_2 S
CAM2PC Cam2pc.Exe Buffer Overflow Vulnerability_3 S
CAM2PC Cam2pc.Exe Buffer Overflow Vulnerability_4 S
Cisco Unity Express Cross-Site Request Forgery Vulnerability S
Cisco Unity Express Cross-Site Scripting Vulnerability S
Cisco Unity Express Cross-Site Scripting Vulnerability_1 S
Cisco Video Surveillance Broadware.Jsp Security Bypass Vulnerability S
Cisco Video Surveillance Index.Php Cross-Site Scripting Vulnerability S
Cisco Video Surveillance Read_Log.Dep File Include Vulnerability S
Cisco Video Surveillance Read_Log.Dep File Include Vulnerability_1 S
Cisco Video Surveillance Read_Log.Jsp File Include Vulnerability S
Cisco Video Surveillance Read_Log.Jsp File Include Vulnerability_1 S
Comment Rating Plugin For WordPress ck-processkarma.php Security Bypass Vulnerability S
Comment Rating Plugin For WordPress ck-processkarma.php SQL Injection Vulnerability S
CoolPDF Reader CVE-2012-4914 Buffer Overflow Vulnerability (MessageBox) S
CoolPDF Reader CVE-2012-4914 Buffer Overflow Vulnerability (win_exec) S
Corel Quattro Pro Qpro Getnotebookwindowhandle .Qpw Denial Of Service Vulnerability S
Corel Quattro Pro Qpro Ordinal132 .Qpw Denial Of Service Vulnerability S
Corel Wordperfect Office X6 Wpwin16.Dll Buffer Overflow Vulnerability S
D-Link DIR-300 Bsc_Lan.Php Cross-Site Scripting Vulnerability S
D-Link DIR-600 And DIR-300 command.php Command Execution Vulnerability S
D-Link DIR-600 And DIR-300 Information Disclosure Vulnerability S
D-Link DIR-600 And DIR-300 Information Disclosure Vulnerability_1 S
D-Link DIR-600 And DIR-300 Password Disclosure Vulnerability S
D-Link DIR-600 And DIR-300 Path Disclosure Vulnerability S
D-Link DIR-645 Security Bypass Vulnerability S
D-Link DIR-645 Security Bypass Vulnerability_1 S
D-Link DIR-645 Security Bypass Vulnerability_2 S
D-Link DIR-645 Security Bypass Vulnerability_3 S
D-Link DSL-2740B Security Bypass Vulnerability S
Dell SonicWALL Scrutinizer SQL Injection Vulnerability (gen_shell_bind_tcp) S
Dell SonicWALL Scrutinizer SQL Injection Vulnerability (php_exec) S
Dolphin Swfupload Module Content Spoofing Vulnerability S
Dolphin Swfupload Module Cross-Site Scripting Vulnerability S
Dotclear Swfupload Module Content Spoofing Vulnerability S
Dotclear Swfupload Module Cross-Site Scripting Vulnerability S
Ezstats2 For Medal Of Honor Warfighter Style.Php File Include Vulnerability S
Ezstats2 For Medal Of Honor Warfighter Style.Php File Include Vulnerability_1 S
Ezstats2 For Playstation Style.Php File Include Vulnerability S
Ezstats2 For Playstation Style.Php File Include Vulnerability_1 S
Ezstats2 Serverviewer Style.Php File Include Vulnerability S
Ezstats2 Serverviewer Style.Php File Include Vulnerability_1 S
Firebird CVE-2013-2492 Remote Code Execution Vulnerability S
Foscam Firmware Web Interface Directory Traversal Vulnerability S
FTP Sami FTP Server 'LIST' Command Buffer Overflow Vulnerability S
Hanso Player M3U File String Handling Overflow S
HP Intelligent Management Center topoContent.jsf Cross-site Scripting Vulnerability S
HTTP AContent 'url' Arbitrary File Disclosure Vulnerability S
HTTP Alt-N MDaemon WorldClient 'Change Password' CSRF Vulnerability S
HTTP Alt-N MDaemon WorldClient 'Enable Forwarding' CSRF Vulnerability S
HTTP BlackNova Traders 'news.php' SQL Injection Vulnerability S
HTTP Brewthology 'r' Parameter SQL Injection Vulnerability S
HTTP ClipShare 'ugroup_videos.php' SQL Injection Vulnerability S
HTTP daloRADIUS 'mng-search.php' XSS Vulnerability S
HTTP daloRADIUS 'rep-logs-daloradius.php' XSS Vulnerability S
HTTP doorGets CMS Cross-Site Request Forgery Vulnerability S
HTTP Easewe FTP OCX 'EaseWeFtp.ocx' LocalFileWrite Insecure Method Vulnerability S
HTTP Flatnux 'theme' Parameter Local File Include Vulnerability S
HTTP Flowplayer 'linkUrl' Parameter Cross Site Scripting Vulnerability S
HTTP Free Hosting Manager 'viewaccount.php' SQL Injection Vulnerability S
HTTP Geeklog CVE-2013-1470 Cross Site Scripting Vulnerability S
HTTP glFusion CVE-2013-1466 'calendar_index.php' Cross Site Scripting Vulnerability S
HTTP glFusion CVE-2013-1466 'links_index.php' Cross Site Scripting Vulnerability S
HTTP glFusion CVE-2013-1466 'profiles.php' Cross Site Scripting Vulnerability S
HTTP glFusion CVE-2013-1466 'xppubwiz.php' Cross Site Scripting Vulnerability S
HTTP Hiverr 'categorygigs.php' Script SQL Injection Vulnerablity S
HTTP Hiverr 'gig_desc.php' Script SQL Injection Vulnerablity S
HTTP Hiverr 'inbox_detail.php' Script SQL Injection Vulnerablity S
HTTP IBM Lotus Domino 'CalendarFS' Cross Site Scripting Vulnerability S
HTTP IBM Lotus Domino 'ToDoFS' Cross Site Scripting Vulnerability S
HTTP IBM Lotus Domino 'WebInteriorCalendarFS' Cross Site Scripting Vulnerability S
HTTP IBM Lotus Domino 'WebInteriorToDoFS' Cross Site Scripting Vulnerability S
HTTP Jaow CMS 'add_ons' Parameter Cross Site Scripting Vulnerability S
HTTP JForum 'jforum.page' Password Change XSS Vulnerability S
HTTP JForum 'jforum.page' Script 'action' Parameter XSS Vulnerability S
HTTP JForum 'jforum.page' Script 'action' Parameter XSS Vulnerability_1 S
HTTP JForum 'jforum.page' Script 'returnUrl' Parameter XSS Vulnerability S
HTTP JForum 'jforum.page' Script 'start' Parameter XSS Vulnerability S
HTTP Linksys WAG200G Command Injection Security Vulnerability S
HTTP Linksys WAG200G HTML Injection Security Vulnerability S
HTTP Liquid XML Studio 2012 ActiveX Control Insecure Method Vulnerability S
HTTP Liquid XML Studio 2012 ActiveX Control Insecure Method Vulnerability_1 S
HTTP Open-Xchange Server 'location' Parameter Header Injection Vulnerability S
HTTP Open-Xchange Server 'TestServlet' XSS Vulnerability S
HTTP Open-Xchange Server CVE-2013-1646 'ajax mail json' Parameter XSS Vulnerability S
HTTP Open-Xchange Server CVE-2013-1647 XSS Vulnerability S
HTTP OpenEMR 'site' Parameter Cross Site Scripting Vulnerability S
HTTP Petite Annonce 'moteur-prix.php' Cross Site Scripting Vulnerability S
HTTP Piwigo CVE-2013-1468 Cross-Site Request Forgery Vulnerability S
HTTP Piwigo CVE-2013-1469 Arbitrary Path Traversal Vulnerability S
HTTP RaidSonic IB-NAS5220 and IB-NAS4220-B Authentication Bypass Vulnerability S
HTTP SAP ICF 'sap public info' Service Sensitive Information Gathering S
HTTP Slash CMS index.php Cross Site Scripting Vulnerability S
HTTP Slash CMS index.php SQL Injection Vulnerability S
HTTP SonicWALL Aventail 'CategoryID' Parameter SQL Injection Vulnerability S
HTTP StarVedia IC502w and IC502w PLUS Information Disclosure Vulnerability S
HTTP Stradus CMS 'log_view.php' Cross Site Scripting Vulnerability S
HTTP Stradus CMS 'new.php' Cross Site Scripting Vulnerability S
HTTP SynConnect 'loginid' Parameter SQL Injection Vulnerability S
HTTP TP-LINK TL-WR740N Router 'httpd' Denial of Service Vulnerability S
HTTP Verizon FiOS Router CVE-2013-0126 Add User CSRF Vulnerability S
HTTP Verizon FiOS Router CVE-2013-0126 Adding Administrator User CSRF Vulnerability S
HTTP Verizon FiOS Router CVE-2013-0126 Enable Remote Administration CSRF Vulnerability S
HTTP WordPress Count Per Day Plugin 'counter.php' CSRF Vulnerability S
HTTP WordPress FAQs Manager Plugin admin-ajax.php XSS Vulnerability S
HTTP WordPress Floating Tweets plugin 'admin-ajax.php' XSS Vulnerability S
HTTP WordPress Floating Tweets plugin 'admin-ajax.php' XSS Vulnerability_1 S
HTTP WordPress Floating Tweets plugin 'admin-ajax.php' XSS Vulnerability_2 S
HTTP WordPress Floating Tweets plugin 'admin-ajax.php' XSS Vulnerability_3 S
HTTP WordPress Floating Tweets Plugin Directory Traversal Vulnerability S
HTTP WordPress Floating Tweets Plugin Full Path Disclosure Vulnerability S
HTTP WordPress LeagueManager Plugin 'league_id' Parameter SQL Injection Vulnerability S
HTTP WordPress Occasions Plugin Cross Site Request Forgery Vulnerability S
HTTP WordPress Pretty Link Plugin CVE-2013-1636 XSS Vulnerability S
HTTP WordPress Simply Poll Plugin HTML Injection and CSRF Vulnerability S
HTTP WordPress Smart Flv Plugin 'jwplayer.swf' XSS Vulnerability S
HTTP WordPress Smart Flv Plugin 'jwplayer.swf' XSS Vulnerability_1 S
HTTP WordPress WP Banners Lite Plugin 'cid' Cross-Site Scripting Vulnerability S
HTTP ZeroClipboard 'ZeroClipboard10.swf' Cross Site Scripting Vulnerability S
Kindeditor Multiple File Upload Vulnerability S
Kordil EDMS Multiple Scripts File Upload Vulnerability S
Mambo Editor.Php Path Disclosure Vulnerability S
Mambo Editorframe.Php Path Disclosure Vulnerability S
Mambo Frmupload.Html Denial Of Service Vulnerability S
Mambo Images.Php Path Disclosure Vulnerability S
Mambo Manager.Php Path Disclosure Vulnerability S
Mambo Mysql Database Information Disclosure Vulnerability S
Mambo Thumbs.Php Path Disclosure Vulnerability S
Mathjax-Latex Plugin For Wordpress Options-General.Php Cross-Site Request Forgery Vuln S
Mcafee Virtual Technician Activex Control 'Save()' Insecure Method Vulnerability S
McAfee Vulnerability Manager Cert_Cn Cross-Site Scripting Vulnerability S
Microsoft IE SLayoutRun Use After Free MS13-009 Vulnerability S
Microsoft IE SLayoutRun Use After Free MS13-009 Vulnerability_1 S
Microsoft Office Code Execution Vulnerability S
Microsoft Office RTF File Stack Buffer Overflow Vulnerability S
Mitsubishi MX (ActUWzd.dll) WzTitle Method Buffer Overflow Vulnerability (SCADA) S
MnoGoSearch QUERY_STRING Parameter Information Disclosure Vulnerability S
MTP Guestbook ajax_cat_ins.php Script Cross-site Scripting Vulnerability S
MTP Guestbook blocked.php Script Cross-site Scripting Vulnerability S
MTP Guestbook insert_user.php Script Cross-site Scripting Vulnerability S
MTP Image Gallery Title Parameter Cross-site Scripting Vulnerability S
MTP Image Gallery Title Parameter Cross-site Scripting Vulnerability_1 S
MTP Poll ajax_cat_ins.php Script Cross-site Scripting Vulnerability S
MTP Poll insert_user.php Script Cross-site Scripting Vulnerability S
MTP Poll poll_add.php Script Cross-site Scripting Vulnerability S
NConf call_file.php Path Disclosure Vulnerability S
NConf call_file.php Path Disclosure Vulnerability_1 S
NConf Delete Attr Script SQL Injection Vulnerability S
NConf Delete Attr Script SQL Injection Vulnerability_1 S
NConf Handle Item Script SQL Injection Vulnerability S
NConf handle_item.php Cross-site Scripting Vulnerability S
NConf Write2DB Script SQL Injection Vulnerability S
Opencart Filemanager.Php Directory Traversal Vulnerability S
Opencart Filemanager.Php Directory Traversal Vulnerability_1 S
Oracle Java SE CVE-2013-0431 JMX Remote Code Execution Vulnerability S
Oracle Java SE CVE-2013-0431 JMX Remote Code Execution Vulnerability_1 S
Oriondb Web Directory Multiple Cross Site Scripting Vulnerabilities S
Oriondb Web Directory Multiple Cross Site Scripting Vulnerabilities_1 S
Photodex ProShow Producer '.pxt' File Buffer Overflow Vulnerability S
Photodex ProShow Producer Local Memory Corruption Vulnerability S
PHP-Fusion articles.php Script Cross-site Scripting Vulnerability S
PHP-Fusion articles.php Script SQL Injection Vulnerability S
PHP-Fusion article_cats.php Script Cross-site Scripting Vulnerability S
PHP-Fusion bbcodes.php Script Cross-site Scripting Vulnerability S
PHP-Fusion bbcodes.php Script Cross-site Scripting Vulnerability_1 S
PHP-Fusion bbcodes.php Script SQL Injection Vulnerability S
PHP-Fusion db_backup.php File Deletion Vulnerability S
PHP-Fusion db_backup.php File Upload Vulnerability S
PHP-Fusion download.php Script SQL Injection Vulnerability S
PHP-Fusion download_cats.php Script Cross-site Scripting Vulnerability S
PHP-Fusion messages.php Script SQL Injection Vulnerability S
PHP-Fusion news.php Script Cross-site Scripting Vulnerability S
PHP-Fusion news.php Script Cross-site Scripting Vulnerability_1 S
PHP-Fusion news.php Script SQL Injection Vulnerability S
PHP-Fusion news.php Script SQL Injection Vulnerability_1 S
PHP-Fusion news_cats.php Script Cross-site Scripting Vulnerability S
PHP-Fusion panel_editor.php Script Cross-site Scripting Vulnerability S
PHP-Fusion postedit.php Script SQL Injection Vulnerability S
PHP-Fusion postnewthread.php Script SQL Injection Vulnerability S
PHP-Fusion user_fields.php File Include Vulnerability S
PHP-Fusion weblink_cats.php Script Cross-site Scripting Vulnerability S
Phpboost Url Parameter Path Disclosure Vulnerability S
phpMyRecipes addrecipe.php and editrecipe.php Scripts Cross-site Scripting Vulnerability S
Plogger Edit Comment Cross-site Scripting Vulnerability S
Plogger Plog Manage Cross-site Scripting Vulnerability S
Plogger Plog Options Cross-site Scripting Vulnerability S
Plogger plog-feedback.php SQL Injection Vulnerability S
PolarBear CMS upload.php File Upload Vulnerability S
Qool CMS Add Root User Cross-site Request Forgery S
Qool CMS addcontentitem Cross-site Scripting Vulnerability S
Qool CMS addgeneraldata Cross-site Scripting Vulnerability S
Qool CMS addgeneraldata task paramter Cross-site Scripting Vulnerability S
Qool CMS addmenu Cross-site Scripting Vulnerability S
Qool CMS addnewdatafield Cross-site Scripting Vulnerability S
Qool CMS addnewtype Cross-site Scripting Vulnerability S
Qool CMS addnewuserfield Cross-site Scripting Vulnerability S
Qool CMS adduser Cross-site Scripting Vulnerability S
Qool CMS addusergroup Cross-site Scripting Vulnerability S
Question2Answer Contact Page Security Bypass S
Question2Answer Login Page Cross-site Request Forgery S
Rebus List List.Php SQL Injection Vulnerability S
Rix4Web add-site.php SQL Injection Vulnerability S
Rlswordpresssearch Plugin For Wordpress Register.Php SQL Injection Vulnerability S
Rsfiles Component For Joomla Cid Parameter SQL Injection Vulnerability S
Rsfiles Component For Joomla Cid Parameter SQL Injection Vulnerability_1 S
Sami FTP Server PUT Buffer Overflow Vulnerability S
Schneider Electric Accutech Manager Heap Buffer Overflow Vulnerability (SCADA) S
Scripteen Fun Photo Script Download.Php Script Cross-Site Scripting Vulnerability S
Scripteen Fun Photo Script Latest_Photo.Php Script Cross-Site Scripting Vulnerability S
Simple Machines Forum Configuration File Information Disclosure Vulnerability S
SMB Microsoft Office Code Execution Vulnerability S
Snazzy Archives Plugin For Wordpress Tagcloud.Swf Cross-Site Scripting Vulnerability S
User Collections Plugin For Piwigo ZeroClipboard.swf Cross-site Scripting Vulnerability S
VLC MMS Stream Handling Buffer Overflow Vulnerability (MessageBox) S
VLC MMS Stream Handling Buffer Overflow Vulnerability (win_exec) S
Web Cookbook Searchrecipe.Php Cross-Site Scripting Vulnerability S
Web Cookbook Searchrecipe.Php Script SQL Injection Vulnerability S
Web Cookbook Searchrecipe.Php Script SQL Injection Vulnerability_1 S
Web Cookbook Showtext.Php Script SQL Injection Vulnerability S
WellinTech KingView CVE-2012-4711 Memory Corruption Vulnerability (SCADA) S
WellinTech KingView CVE-2012-4711 Memory Corruption Vulnerability_1 (SCADA) S
Wordpress Attack Scanner Plugin For Wordpress Path Information Disclosure Vulnerability S
Wordpress Attack Scanner Plugin For Wordpress Path Information Disclosure Vulnerability_1 S
Wordpress Attack Scanner Plugin For Wordpress Path Information Disclosure Vulnerability_2 S
Wordpress Attack Scanner Plugin For Wordpress Path Information Disclosure Vulnerability_3 S
Wordpress Attack Scanner Plugin For Wordpress Path Information Disclosure Vulnerability_4 S
Wordpress Attack Scanner Plugin For Wordpress Path Information Disclosure Vulnerability_5 S
Wordpress Indianic Faqs Manager Plugin 1.0 XSRF Vulnerability S
Wordpress Indianic Faqs Manager Plugin 1.0 XSS Vulnerability S
Wordpress Podpress Plugin 'Playerid' Parameter Cross Site Scripting Vulnerability S
Xenforo Swfupload Module Content Spoofing Vulnerability S
Xenforo Swfupload Module Cross-Site Scripting Vulnerability S
Your Own Classifieds Cat-Search Page Cross-Site Scripting Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.