Search

Traffic File Update - June 2013

This Traffic IQ Professional update for June 2013 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for June 2013

219 Application Exploits

230 CMS Install.php Code Execution Vulnerability S
ABBS Audio Media Player .Lst Buffer Overflow Vulnerability S
Acms Assets Page Information Disclosure Vulnerability S
Acms Flv_Player.Swf Cross-Site Scripting Vulnerability S
Acms Flv_Player.Swf Spoofing Vulnerability S
Acms Zeroclipboard10.Swf And Tagcloud.Swf Cross-Site Scripting Vulnerability S
Acms Zeroclipboard10.Swf And Tagcloud.Swf Cross-Site Scripting Vulnerability_1 S
Adrenalin Player .M3u SEH Buffer Overflow Vulnerability S
AirLive IP Camera String Denial Of Service Vulnerability S
AirLive IP Cameras CVE-2013-3541 Directory Traversal Vulnerability S
AirLive IP Cameras Information Disclosure Vulnerability S
AirLive IP Cameras Web Interface Cross-site Request Forgery Vulnerability S
Apache Struts CVE-2013-1966 Security Bypass Vulnerability S
Apache Struts CVE-2013-1966 Security Bypass Vulnerability_1 S
Apache Struts CVE-2013-2115 Security Bypass Vulnerability S
Apache Struts CVE-2013-2115 Security Bypass Vulnerability_1 S
ASUS RT-N56U Wireless Router Apply.cgi Command Execution Vulnerability S
Barracuda SSL VPN Open Redirection Vulnerability S
Beat Websites Beats.Php SQL Injection Vulnerability S
BOINC Manager String SEH Buffer Overflow Vulnerability S
Boonex Dolphin Categories.php SQL Injection Vulnerability S
Brickcom 100Ap Series IP Cameras Configfile.dump Security Bypass Vulnerability S
Brickcom 100Ap Series IP Cameras Users.cgi Cross-site Request Forgery Vulnerability S
Brother MFC-9970CDW Printer Admin_Main.Html Cross-Site Scripting Vulnerability S
Brother MFC-9970CDW Printer Log_To_Net.Html And Copy_Settings.Html XSS Vulnerability S
Brother MFC-9970CDW Printer Log_To_Net.Html And Copy_Settings.Html XSS Vulnerability_1 S
Cisco Linksys E4200 Cross-Site Scripting Vulnerability S
Cisco Linksys E4200 Cross-Site Scripting Vulnerability_1 S
Cisco Linksys E4200 Cross-Site Scripting Vulnerability_2 S
Cisco Linksys E4200 Cross-Site Scripting Vulnerability_3 S
Cisco Linksys E4200 Cross-Site Scripting Vulnerability_4 S
Cisco Linksys E4200 File Include Vulnerability S
CMS Gratis Indonesia Config.php Code Execution Vulnerability S
Com_S5clanroster Component For Joomla Index.Php SQL Injection Vulnerability S
Craigslist Clone Gold Index.Php SQL Injection Vulnerability S
Cuppa CMS AlertConfigField.php File Include Vulnerability S
D-Link DSL-320B Config File Security Bypass Vulnerability S
D-Link DSL-320B DNS Setting Security Bypass Vulnerability S
D-Link DSL-320B Home_Parent.Xgi Cross-Site Scripting Vulnerability S
D-Link DSL-320B Log File Security Bypass Vulnerability S
D-Link DSL-320B Tools Admin Security Bypass Vulnerability S
Dewafiles Proses_edit_profile.php Cross-site Request Forgery Vulnerability S
DJ-Classifieds Component For Joomla! Index.Php SQL Injection Vulnerability S
DS3 Authentication Server ErrorViewer.jsp Security Bypass Vulnerability S
DS3 Authentication Server TestDRConnection.jsp Path Disclosure Vulnerability S
DS3 Authentication Server TestTelnetConnection.jsp Command Execution Vulnerability S
Easy Icon Maker .Ico Denial Of Service Vulnerability S
Elastix Url Parameter Cross-Site Scripting Vulnerability S
Elastix Url Parameter Cross-Site Scripting Vulnerability_1 S
Exim Sender_address Parameter Command Execution Vulnerability S
File Lite Application For Ipad And Iphone File Upload Cross-Site Scripting Vulnerability S
File Lite Application For Ipad And Iphone Files Module Cross-Site Scripting Vulnerability S
Flagallery-Skins Plugin For Wordpress Gallery.Php SQL Injection Vulnerability S
Fuzezip .Zip Buffer Overflow Vulnerability S
Gallery Server Pro Default.Aspx File Upload Vulnerability S
Game Section Plugin For Mybb Games.Php Cross-Site Scripting Vulnerability S
Habbomobile Sulake Multiple SQL Injection Vulnerability S
Habbomobile Sulake Multiple SQL Injection Vulnerability_1 S
Hloun Support Management System Index.Php SQL Injection Vulnerability S
HP Insight Diagnostics CVE-2013-3574 Remote Code Injection Vulnerability S
HP Insight Diagnostics CVE-2013-3575 Local File Include Vulnerability S
HP Laserjet Pro P1606dn Security Bypass Vulnerability S
HP System Management Homepage CVE-2013-3576 Command Injection Vulnerability S
Htmlcommentbox Page Parameter Cross-Site Scripting Vulnerability S
HTTP Airlive IP Camera CVE-2013-3691 Remote Denial Of Service Vulnerability S
HTTP Airlive IP Cameras CVE-2013-3540 Cross Site Request Forgery Vulnerability S
HTTP Airlive WL-2600CAM IP Camera CVE-2013-3686 Information Disclosure Vulnerability S
HTTP Ajax Availability Calendar 'id_item' Parameter XSS Vulnerability S
HTTP Ajax Availability Calendar Multiple Input Validation Vulnerabilities S
HTTP Apache Struts OGNL Expression Injection Vulnerability S
HTTP Apache Struts OGNL Expression Injection Vulnerability_1 S
HTTP AXIS Media Control ActiveX CVE-2013-3543 Arbitrary File Overwrite Vulnerability S
HTTP Brickcom Multiple IP Cameras CVE-2013-3689 Information Disclosure Vulnerability S
HTTP Brickcom Multiple IP Cameras CVE-2013-3690 Cross Site Request Forgery Vulnerability S
HTTP Buffalo WZR-HP-G300NH2 Router Cross Site Request Forgery Vulnerability S
HTTP Caucho Resin 'file' Parameter Information Disclosure Vulnerability S
HTTP Caucho Resin 'file' Parameter Information Disclosure Vulnerability_1 S
HTTP Caucho Resin 'file' Parameter Information Disclosure Vulnerability_2 S
HTTP cgit 'url' Parameter Directory Traversal Vulnerability S
HTTP Concrete5 Multiple Cross Site Request Forgery Vulnerabilities S
HTTP Concrete5 Multiple Cross Site Request Forgery Vulnerabilities_1 S
HTTP Concrete5 Multiple Cross Site Request Forgery Vulnerabilities_2 S
HTTP Cuppa CMS 'urlConfig' Parameter File Include Vulnerability S
HTTP Cuppa CMS 'urlConfig' Parameter File Include Vulnerability_1 S
HTTP Eclipse IDE Help Component 'content.jsp' Cross Site Scripting Vulnerability S
HTTP Eclipse IDE Help Component 'index.jsp' Cross Site Scripting Vulnerability S
HTTP Exponent CMS CVE-2013-3294 Multiple SQL Injection Vulnerabilities S
HTTP Exponent CMS CVE-2013-3294 Multiple SQL Injection Vulnerabilities_1 S
HTTP Exponent CMS CVE-2013-3295 Local File Include Vulnerability S
HTTP Fobuc Guestbook 'index.php' SQL Injection Vulnerability S
HTTP FreeNAC deviceadd.php CVE-2012-6559 Cross Site Scripting Vulnerability S
HTTP FreeNAC deviceadd.php CVE-2012-6560 SQL Injection Vulnerability S
HTTP Grandstream Multiple IP Cameras CVE-2013-3963 CSRF Vulnerability S
HTTP Jojo CMS 'search' Parameter CVE-2013-3082 Cross Site Scripting Vulnerability S
HTTP Joomla jNews Component 'get-data' Cross-Site Scripting Vulnerability S
HTTP Matterdaddy Market Multiple Security Vulnerabilities S
HTTP MayGion IP Camera CVE-2013-1604 Directory Traversal Vulnerability S
HTTP MayGion IP Camera CVE-2013-1605 Remote Buffer Overflow Vulnerability S
HTTP MiniWeb POST Denial of Service Vulnerability S
HTTP NanoBB category.php id Parameter SQL Injection Vulnerability S
HTTP NanoBB topic.php id Parameter SQL Injection Vulnerability S
HTTP NetGear WPN824v3 Information Disclosure Vulnerability S
HTTP NetIQ Access Manager 'Ecom_User_ID' Multiple XSS Vulnerability S
HTTP PHD Help Desk Multiple SQL Injection Vulnerability S
HTTP RuubikCMS 'folder' Parameter Directory Traversal Vulnerability S
HTTP RuubikCMS Multiple Information Disclosure Vulnerabilities S
HTTP RuubikCMS Multiple Information Disclosure Vulnerabilities_1 S
HTTP RuubikCMS Multiple Information Disclosure Vulnerabilities_2 S
HTTP RuubikCMS Multiple Parameters XSS Vulnerabilities S
HTTP RuubikCMS Multiple Parameters XSS Vulnerabilities_1 S
HTTP RuubikCMS Multiple Parameters XSS Vulnerabilities_2 S
HTTP ScriptCase 'scelta_categoria.php' SQL Injection Vulnerability S
HTTP Securimage 'example_form.php' Cross Site Scripting Vulnerability S
HTTP Siemens Solid Edge SEListCtrlX ActiveX Memory Corruption Vulnerability (SCADA) S
HTTP Siemens Solid Edge ST4,ST5 OpenInEditor() Method Arbitrary Command Exec Vuln (SCADA) S
HTTP Siemens Solid Edge ST4,ST5 SetItemReadOnly() Method Arbitrary Code Exec Vuln (SCADA) S
HTTP Sony CH and DH Series IP Cameras CVE-2013-3539 CSRF Vulnerability S
HTTP Telaen CVE-2013-2621 Open Redirection Vulnerability S
HTTP Telaen CVE-2013-2623 Cross Site Scripting Vulnerability S
HTTP Telaen CVE-2013-2624 Information Disclosure Vulnerability S
HTTP Weyal CMS Multiple SQL Injection Vulnerabilities S
HTTP WordPress ADIF Log Search Widget Plugin 'logbook_search.php' XSS Vulnerability S
HTTP WordPress Ambience Theme 'src' Parameter Cross Site Scripting Vulnerability S
HTTP WordPress Pretty Link Lite Plugin 'get-data' Cross-Site Scripting Vulnerability S
HTTP WordPress ProPlayer Plugin 'id' Parameter SQL Injection Vulnerability S
HTTP WordPress Securimage-WP Plugin 'siwp_test.php' XSS Vulnerability S
HTTP WordPress Spider Catalog Plugin 'add_spider_event' SQL Injection Vulnerability S
HTTP WordPress Spider Catalog Plugin 'allImagesQ' Cross Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin 'calendar_id' Cross-Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin 'delay' Cross Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin 'edit_spider_event' SQL Injection Vulnerability S
HTTP WordPress Spider Catalog Plugin 'eventID' Cross-Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin 'ev_ids' Cross-Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin 'juriroot' Cross Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin 'slideShowQ' Cross Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin 'spider_calendar_published' SQL Injection Vulnerability S
HTTP WordPress Spider Catalog Plugin 'theme_id' Cross-Site Scripting Vulnerability S
HTTP WordPress Spider Catalog Plugin SQL Injection Vulnerability S
HTTP WordPress WP cleanfix Plugin 'eval()' Function CVE-2013-2108 CSRF Vulnerability S
HTTP WordPress wp-FileManager Plugin 'path' Parameter Arbitrary File Download Vulnerability S
HTTP WordPress WP-SendSMS Plugin Cross Site Request Forgery Vulnerability S
HTTP YeaLink IP Phone SIP-T20P and SIP-T26P Security Bypass Vulnerability S
HTTP Zavio IP Cameras CVE-2013-2568 Arbitrary Command Injection Vulnerability S
HTTP Zavio IP Cameras CVE-2013-2570 Command Injection Vulnerability S
Imperva SecureSphere Operations Manager 'getOperationState.dwr' Path Disclosure S
Imperva SecureSphere Operations Manager FilePath Parameter Path Disclosure Vulnerability S
Imperva SecureSphere Operations Manager Login Page Security Bypass Vulnerability S
Imperva SecureSphere Operations Manager SecsphLogin.jsp Information Disclosure Vulnerability S
Intrasrv Simple Web Server Crafted HTTP Request Handling Buffer Overflow Vulnerability S
Invision Power Board Administrative Account Security Bypass Vulnerability S
JW Player And JW Player Pro Player.Swf Cross-Site Scripting Vulnerability S
Kimai Db_Restore.Php SQL Injection Vulnerability S
Lianja SQL Server Db_Netserver Process Buffer Overflow Vulnerability S
Lokboard Index_4.php Code Execution Vulnerability S
Microsoft Internet Explorer Cgenericelement Object Code Execution Vulnerability S
Microsoft Windows Media Player .Wav Denial Of Service Vulnerability S
Miniweb Content-Length Header Denial Of Service Vulnerability S
MkCMS Index.php Code Execution Vulnerability S
MkCMS Index.php Code Execution Vulnerability_1 S
Monkey HTTP Daemon 'memcpy()' Function Buffer Overflow Vulnerability S
Monkey HTTP Daemon Mk_request_header_process Function Buffer Overflow Vulnerability S
Monkey HTTP Daemon NULL Byte Denial of Service Vulnerability S
Napata CMS Install.php Code Execution Vulnerability S
Netapp Oncommand System Manager CVE-2013-3320 Admin Page Cross-Site Scripting Vulnerability S
Netapp Oncommand System Manager CVE-2013-3320 Multiple Cross-Site Scripting Vulnerability S
Netgear DGN1000 And Netgear DGN2200 Command Execution Vulnerability S
Netgear DGN1000 And Netgear DGN2200 Security Bypass Vulnerability S
NetGear WPN824v3 Config File Information Disclosure Vulnerability S
Network Weathermap 'mapname' Parameter CVE-2013-3739 Local File Include Vulnerability S
Newsletter Plugin For Wordpress Page.Php Cross-Site Scripting Vulnerability S
nginx 'ngx_http_parse.c' Stack Buffer Overflow Vulnerability S
Opendocman Error.Php Cross-Site Scripting Vulnerability S
Ophcrack Pwdump6_Setup.Exe Buffer Overflow Vulnerability S
PeStudio 'peparser.dll' Module Remote Denial of Service Vulnerability S
PeStudio Peparser.dll Denial Of Service Vulnerability S
Phocagallery Component For Joomla! Plupload.Flash.Swf Cross-Site Scripting Vulnerability S
Php-Charts Index.Php Code Execution Vulnerability S
QNAP VioStor NVR and QNAP NAS CVE-2013-0143 Remote Code Execution Vulnerability S
QNAP VioStor NVR and QNAP NAS CVE-2013-0144 CSRF Vulnerability S
Quick TFTP Remote Denial Of Service Vulnerability S
Sami FTP Server RETR Command Remote Denial of Service Vulnerability S
SAP Netweaver SXPG_CALL_SYSTEM Command Execution Vulnerability S
SAS Integration Technologies Client Retrievebinaryfile() Buffer Overflow Vulnerability S
Schneider Electric Accutech Manager Heap Buffer Overflow Vulnerability S
Serva Buffer Overflow Vulnerability S
Siemens Solid Edge ST5 Webparthelper Activex Control Command Execution Vuln (SCADA) S
Siemens Solid Edge ST5 Webparthelper Activex Control Command Execution Vuln (SCADA)_1 S
Simple PHP Agenda Eventid Parameter SQL Injection Vulnerability S
Synactis PDF In-The-Box ActiveX Buffer Overflow Vulnerability S
Synactis PDF In-The-Box ActiveX Component Stack Based Buffer Overflow Vulnerability S
Telaen Index.php Cross-site Scripting Vulnerability S
Telaen Redir.php Open Redirection Vulnerability S
Telaen Webroot Leak Path Disclosure Vulnerability S
TESO Web Default.asp SQL Injection Vulnerability S
TESO Web Default.asp SQL Injection Vulnerability_1 S
TP-Link IP Camera Default Account Vulnerability S
TP-LINK IP Cameras CVE-2013-2573 Command Injection Vulnerability S
TP-LINK TL-SC3171 IP Camera Security Bypass Vulnerability S
TP-LINK TL-SC3171 IP Camera Security Bypass Vulnerability_1 S
Ubiquiti airCam RTSP Service CVE-2013-1606 Buffer Overflow Vulnerability S
UMI.CMS CVE-2013-2754 Admin Page Cross-Site Request Forgery Vulnerability S
Vbulletin Index.Php SQL Injection Vulnerability S
Videojs 1Player Cross-Site Scripting Vulnerability S
Videojs EasySqueezePage Cross-Site Scripting Vulnerability S
Videojs S3 Video Cross-Site Scripting Vulnerability S
Videojs Video Embed Generator Cross-Site Scripting Vulnerability S
Videojs Video For Everyone Cross-Site Scripting Vulnerability S
Videojs Video.Js And Video-Js.Swf Denial Of Service Vulnerability S
Webid Loader.Php File Disclosure Vulnerability S
Webid Yourauctions_P.Php SQL Injection Vulnerability S
WHMCS Invoicefunctions.Php SQL Injection Vulnerability S
Wifi Photo Transfer Application For Ipad And Iphone Path Folder Cross-Site Scripting Vuln S
Winarchiver String SEH Buffer Overflow Vulnerability S
WinRadius Remote Denial of Service Vulnerability S
Wireless Photo Access Application For Ipad And Iphone Thumb And Image Modules DOS Vuln S
WordPress User Role Editor Plugin Cross Site Request Forgery Vulnerability S
XPIENT IRIS Cash Drawer Security Bypass Vulnerability S
XPIENT IRIS CVE-2013-2571 Security Bypass Vulnerability S
Yahoo TW YSM Marketing Application Index.Php SQL Injection Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.