Search

Traffic File Update - October 2013

This Traffic IQ Professional update for October 2013 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for October 2013

88 Application Exploits

ACal Calendar example.php File Include Vulnerability S
ALLMediaServer HTTP Server Buffer Overflow 'win7' Vulnerability S
ALLMediaServer HTTP Server Buffer Overflow 'winXP' Vulnerability S
Code Sector TeraCopy 'default.mo' Integer Overflow Vulnerability S
easyXDM 2.4.16 'secret' parameter Cross Site Scripting S
easyXDM 2.4.16 'secret' parameter Cross Site Scripting_1 S
GOM Player '.wav' File CVE-2013-5716 Denial of Service Vulnerability S
HTTP AlgoSec Firewall Analyzer 'login page' Cross Site Scripting Vulnerability S
HTTP Berndes Multimedia iCMS Multiple Scripts SQL Injection Vulnerabilies S
HTTP Blakord Portal 'Search' Parameter Cross Site Scripting Vulnerability S
HTTP Cinfores 'news_content.php' SQL injection Vulnerability S
HTTP CIS Manager 'go.asp' SQL Injection Vulnerability S
HTTP cm3 Acora CMS CVE-2013-4723 URI Redirection Vulnerability S
HTTP Combite X-4 CMS 'Index.asp' SQL Injection Vulnerability S
HTTP D-Link DSL-2740B CVE-2013-5730 Multiple CSRF Vulnerabilities S
HTTP D-Link DSL-2740B CVE-2013-5730 Multiple CSRF Vulnerabilities_1 S
HTTP D-Link DSL-2740B CVE-2013-5730 Multiple CSRF Vulnerabilities_2 S
HTTP Datalogicco CMS 'news_description.asp' SQL Injection Vulnerability S
HTTP dBlog CMS 'm' Parameter SQL Injection Vulnerability S
HTTP eBuddy Web Messenger .htaccess File Information Disclosure Vulnerability S
HTTP elproLOG MONITOR WebAccess 'sensorview.php' XSS Vulnerability S
HTTP elproLOG MONITOR WebAccess 'strend.php' XSS Vulnerability S
HTTP Flo CMS 'archivem' SQL Injection Vulnerability S
HTTP Google Chrome XSS Auditor Security Bypass Vulnerabilty S
HTTP GreenBrowser 'over_trigger()' Heap Buffer Overflow Vulnerability S
HTTP IncrediMail (ImSpoolU.dll) Authenticate Method Buffer Overflow Vulnerability S
HTTP Kwok Information Server Hardware-List.Dll SQL Injection Vulnerability S
HTTP McKesson ActiveX Control Information Disclosure Vulnerability S
HTTP MentalJS Sandbox Security Bypass Vulnerability S
HTTP Mitsubishi MC-WorX 'IcoLaunch.dll' Remote Code Execution Vulnerability S
HTTP myBusinessAdmin 'id' SQL Injection Vulnerability S
HTTP NextGEN Smooth Gallery plugin for WordPress galleryID Parameter XSS Vulnerability S
HTTP ONO Hitron CDE-30364 Multiple Cross Site Request Forgery Vulnerabilities S
HTTP ONO Hitron CDE-30364 Multiple Cross Site Request Forgery Vulnerabilities_1 S
HTTP ONO Hitron CDE-30364 Multiple Cross Site Request Forgery Vulnerabilities_2 S
HTTP OpenEMR Arbitrary File Upload Vulnerability S
HTTP OpenEMR SQL Injection Vulnerabilities S
HTTP Openx SQL Injection Vulnerability S
HTTP Palms 'show.php' Cross Site Scripting Vulnerability S
HTTP Palms 'show.php' Cross Site Scripting Vulnerability_1 S
HTTP Palms 'show.php' SQL Injection Vulnerability S
HTTP phpLinks 'index.php' Cross Site Scripting Vulnerability S
HTTP phpVibe rss.php SQL Injection Vulnerability S
HTTP phpVibe rss.php SQL Injection Vulnerability_1 S
HTTP PK-CMS default.asp SQL Injection Vulnerability S
HTTP Post-Gallery Plugin For WordPress 'phpThumb.php' XSS Vulnerability S
HTTP RokNewsPager Plugin For WordPress 'thumb.php' XSS Vulnerability S
HTTP Soltech CMS index.php SQL Injection Vulnerability S
HTTP Synology Diskstation Manager Command Execution Vulnerability S
HTTP TP-Link TD-W8951ND Change Admin Password CSRF Vulnerability S
HTTP TP-LINK TD-W8951ND Router Cross-Site Scripting Vulnerability S
HTTP vtiger CRM 'onlyforuser' Parameter SQL Injection Vulnerability S
HTTP WellinTech KingView (KChartXY.ocx) Arbitrary File Overwrite Vulnerability (SCADA) S
HTTP WellinTech KingView ActiveX (KChartXY.ocx) Traversal File Overwrite Vuln (SCADA) S
HTTP WellinTech KingView ActiveX (SuperGrid.ocx) Traversal File Overwrite Vuln (SCADA) S
HTTP WikkaWiki 'wakka' Parameter CVE-2013-5586 Cross Site Scripting Vulnerability S
HTTP WordPress Bradesco Gateway Plugin CVE-2013-5916 Cross Site Scripting Vulnerability S
HTTP WordPress Design Approval System Plugin 'step' Parameter CVE-2013-5711 XSS Vuln S
HTTP WordPress mb.miniAudioPlayer Plugin 'maplayertinymce.php' Vulnerability S
HTTP WordPress Platinum SEO Pack 's' Parameter CVE-2013-5918 XSS Vulnerability S
HTTP WordPress RokNewsPager Plugin 'thumb.php' DoS Vulnerability S
HTTP WordPress RokNewsPager Plugin 'thumb.php' Full Path Disclosure Vulnerability S
HTTP WordPress RokNewsPager Plugin 'thumb.php' Information Disclosure Vulnerability S
HTTP WordPress Sharebar 'page' Parameter Cross Site Scripting Vulnerability S
HTTP X2CRM 'file' Parameter CVE-2013-5692 File Include Vulnerability S
HTTP X2CRM 'model' Parameter CVE-2013-5693 Cross Site Scripting Vulnerability S
HTTP Zimplit CMS Zimplit.Php Cross-Site Request Forgery Vulnerability S
HTTP Zimplit CMS Zimplit.Php Cross-Site Scripting Vulnerability S
HTTP Zimplit CMS Zimplit.Php Path-Disclosure Vulnerability S
HTTP Ziteman CMS 'page.asp' SQL Injection Vulnerability S
HTTP Zyxware Health Monitoring System 'khmheading.php' Reflected XSS Vulnerability S
jetAudio '.wav' File Denial of Service Vulnerability S
KCFinder browse.php File Disclosure Vulnerability S
PotPlayer '.wav' File Denial of Service Vulnerability S
Rnet eShop Cross Site Scripting Vulnerability S
SolarWinds Server and Application Monitor Buffer Overflow Vulnerability S
Target Longlife Media Player WAV File Handling DoS Vulnerability S
Vestel TV 42PF9322 Denial of Service Vulnerability S
WordPress IndiaNIC Testimonial Plugin Cross Site Request Forgery Vulnerability S
WordPress IndiaNIC Testimonial Plugin Cross Site Request Forgery Vulnerability_1 S
WordPress IndiaNIC Testimonial Plugin Cross Site Request Forgery Vulnerability_2 S
Zyxware Health Monitoring System Cross Site Scripting Vulnerability S
Zyxware Health Monitoring System Cross Site Scripting Vulnerability_1 S
Zyxware Health Monitoring System Cross Site Scripting Vulnerability_2 S
Zyxware Health Monitoring System Cross Site Scripting Vulnerability_3 S
Zyxware Health Monitoring System Cross Site Scripting Vulnerability_4 S
Zyxware Health Monitoring System SQL Injection Vulnerability S
Zyxware Health Monitoring System SQL Injection Vulnerability_1 S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.