Search

Traffic File Update - October 2014

This Traffic IQ Professional update for October 2014 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for October 2014

200 Application Exploits

Allomani Weblinks Cross Site Scripting Vulnerability S
Allomani Weblinks Cross Site Scripting Vulnerability_1 S
Allomani Weblinks SQL Injection Vulnerability S
Apptha Joomla Mac Gallery Album_Id Directory Traversal Vulnerability S
Apptha Video Gallery plugin for WordPress SQL injection Vulnerability S
Bacula-web 5.2.10 SQL Injection Vulnerability S
BulletProof FTP Client CVE-2014-2973 Buffer Overflow Vulnerability S
BulletProof FTP Client CVE-2014-2973 Buffer Overflow Vulnerability_1 S
BulletProof Security plugin for WordPress system-info.php Cross Site Scripting Vulnerability S
Cart Engine Multiple Cross-Site Scripting Vulnerability_1 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_10 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_11 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_2 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_3 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_4 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_5 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_6 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_7 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_8 S
Cart Engine Multiple Cross-Site Scripting Vulnerability_9 S
Cart Engine Open Redirect Vulnerability S
DjVuLibre Crafted Image File Handling DoS Vulnerability S
Element-IT HTTP Commander new folder Cross Site Scripting Vulnerability S
Exponent CMS 2.3.0 Cross Site Scripting Vulnerability S
Face Gallery Extension For Joomla Directory Traversal Vulnerability S
Face Gallery Extension For Joomla SQL Injection Vulnerability S
Fast Image Resizer Unspecified Denial Of Service Vulnerability S
Getsimple CMS Admin.Xml.Bak Information Disclosure Vulnerability S
Getsimple CMS Multiple Cross-Site Scripting Vulnerability S
Glype Browse.Php Directory Traversal Vulnerability S
HP Storage Data Protector CVE-2014-2623 Command Execution Vulnerability S
HP Storage Data Protector CVE-2014-2623 Command Execution Vulnerability_1 S
HTTP Acento Cultural Theme for WordPress view-pdf.php File Access Vulnerability S
HTTP ActualAnalyzer Lite aa.php ant Cookie Parameter Vulnerability S
HTTP Aerohive HiveOS action.php5 _page Parameter LFI Vulnerability S
HTTP Aerohive HiveOS index.php5 ERROR_INFO Parameter XSS Vulnerability S
HTTP Air Transfer downloadSingle id Parameter Remote File Access Vulnerability S
HTTP Air Transfer getList Header Newline Injection DoS Vulnerability S
HTTP Air Transfer getText id Parameter Information Disclosure Vulnerability S
HTTP Airties Air6372SO Modem Web Interface 'top.html' XSS Vulnerability S
HTTP Bitdefender GravityZone default URI CVE-2014-5350 Traversal Vulnerability S
HTTP Bitdefender GravityZone id Parameter Directory Traversal Vulnerability S
HTTP Browserify Function Parsing Remote Code Execution Vulnerability S
HTTP CacheGuard OS CVE-2014-4865 CSRF Vulnerability S
HTTP CMSimple File Manipulation Vulnerability S
HTTP CMSimple Remote Code Execution Vulnerability S
HTTP D-Link DSP-W215 'info.cgi' Handler Buffer Overflow Vulnerability S
HTTP Drupal Core Abstraction SQL Injection (change password) Vulnerability S
HTTP Drupal Core Abstraction SQL Injection (new admin user) Vulnerability S
HTTP Drupal Core Abstraction SQL Injection (new admin user) Vulnerability_1 S
HTTP Easy File Sharing Web Server Stack Buffer Overflow Vulnerability S
HTTP Ericom AccessNow Server 'AccessServer32.exe' Stack Buffer Overflow Vulnerability S
HTTP File Server 'ParserLib.pas' Remote Command Execution Vulnerability S
HTTP File Server Multiple Cross Site Scripting Vulnerability S
HTTP File Server Multiple Cross Site Scripting Vulnerability_1 S
HTTP File Server Multiple Cross Site Scripting Vulnerability_2 S
HTTP File Server Multiple Cross Site Scripting Vulnerability_3 S
HTTP HybridAuth 'install.php' Backdoor Delivery Vulnerability S
HTTP HybridAuth 'install.php' Remote Code Execution Vulnerability S
HTTP IBM 1754 GCM16 and GCM32 avctalert.php key XSS Vulnerability S
HTTP IBM 1754 GCM16 and GCM32 kvm.cgi URI XSS Vulnerability S
HTTP Impress CMS 'user.php' URL Redirection Vulnerability S
HTTP In-Portal CMS 'index.php' HTML Injection Vulnerability S
HTTP innovaphone PBX mod_cmd.xml Password Change CSRF Vulnerability S
HTTP innovaphone PBX mod_cmd_login.xml Adding SIP User CSRF Vulnerability S
HTTP IP.Board index.php Post Creation CSRF Vulnerability S
HTTP Kolibri POST Buffer overflow with EMET 5.0 and EMET 4.1 Partial Bypass S
HTTP Kolibri POST Buffer overflow with EMET 5.0 and EMET 4.1 Partial Bypass_1 S
HTTP Kolibri POST Buffer overflow with EMET 5.0 and EMET 4.1 Partial Bypass_2 S
HTTP Microsoft IE CVE-2014-1815 Memory Corruption Vulnerability S
HTTP Microsoft Internet Explorer CVE-2014-1815 Memory Corruption Vulnerability S
HTTP MODX Revolution CVE-2014-5451 XSS Vulnerability S
HTTP Osclass 'index.php' Local File Include Vulnerability S
HTTP Osclass 'index.php' Multiple XSS Vulnerabilities S
HTTP Osclass 'index.php' Multiple XSS Vulnerabilities_1 S
HTTP Osclass 'index.php' Multiple XSS Vulnerabilities_2 S
HTTP PHPCompta Backup Requests Command Execution Vulnerability S
HTTP phpMyFAQ 'deleteadminlog' Cross-Site Request Forgery Vulnerability S
HTTP phpMyFAQ 'deletecategory' Cross-Site Request Forgery Vulnerability S
HTTP phpMyFAQ 'delete_user' Cross-Site Request Forgery Vulnerability S
HTTP phpMyFAQ 'save_stop_word' Cross-Site Request Forgery Vulnerability S
HTTP phpMyFAQ 'viewsession' Cross-Site Scripting Vulnerability S
HTTP phpMyFAQ Delete Session CSRF Vulnerability S
HTTP phpMyFAQ Edit Configuration CSRF Vulnerability S
HTTP phpMyFAQ Edit User Credentials CSRF Vulnerability S
HTTP phpMyFAQ Remote FAQ Disclosure 'download' Vulnerability S
HTTP phpMyFAQ Remote FAQ Disclosure 'view' Vulnerability S
HTTP Posnic Stock Management System forget_pass.php msg Parameter XSS Vulnerability S
HTTP Posnic Stock Management System index.php msg Parameter XSS Vulnerability S
HTTP Pro Chat Rooms Text Chat Room index.php edit Parameter XSS Vulnerability S
HTTP Raritan PowerIQ 4.1.0 - SQL Injection Vulnerability S
HTTP Raritan PowerIQ 4.1.0 - SQL Injection Vulnerability_1 S
HTTP Raritan PowerIQ 4.1.0 - SQL Injection Vulnerability_2 S
HTTP Raritan PowerIQ 4.1.0 - SQL Injection Vulnerability_3 S
HTTP RiverBed Stingray Traffic Manager Virtual Appliance XSS Vulnerability S
HTTP Sphider 'admin.php' Command Injection Vulnerability S
HTTP Sphider 'admin.php' Reflected Cross Site Scripting Vulnerability S
HTTP Sphider 'admin.php' SQL Injection Vulnerability S
HTTP Sphider 'admin.php' Stored Cross Site Scripting Vulnerability S
HTTP Spider Contacts Extension for Joomla Index.php SQL Injection S
HTTP Store Exporter for WordPress WooCommerce Script Injection Vulnerability S
HTTP Store Exporter for WordPress WooCommerce Script Injection Vulnerability_1 S
HTTP Store Exporter for WordPress WooCommerce Script Injection Vulnerability_2 S
HTTP Textpattern 4.5.5 Cross Site Scripting Vulnerability S
HTTP VoipSwitch 'action' Parameter Local File Include Vulnerability S
HTTP WatchGuard XTM 'poll_name' Parameter XSS Vulnerability S
HTTP WordPress Antioch Theme 'download.php' File Download Vulnerability S
HTTP WordPress Authentic Theme 'download.php' File Download Vulnerability S
HTTP WordPress Disqus Comment System step Parameter CVE-2014-5345 Vulnerability S
HTTP WordPress Epic Theme 'download.php' File Download Vulnerability S
HTTP WordPress GB Gallery Slideshow Plugin 'admin-ajax.php' SQL Injection Vulnerability S
HTTP WordPress KenBurner Slider Plugin 'admin-ajax.php' Vulnerability S
HTTP WordPress Login Widget With Shortcode 'options-general.php' CSRF Vulnerability S
HTTP WordPress Ninja Forms Plugin Authorization Bypass Vulnerability S
HTTP WordPress Premium Gallery Manager Plugin 'ajax.php' Access Bypass Vulnerability S
HTTP WordPress Refraction Theme Cross Site Scription Vulnerability S
HTTP WordPress Refraction Theme Cross Site Scription Vulnerability_1 S
HTTP WordPress Slider Revolution 'img' Parameter Vulnerability S
HTTP WordPress Spider Facebook Plugin 'facebook.php' SQL Injection Vulnerability S
HTTP WordPress TinyMCE Advanced Plugin 'options-general.php' CSRF Vulnerability S
HTTP WordPress Trinity Theme 'download.php' File Download Vulnerability S
HTTP WordPress Urban City Theme 'download.php' File Download Vulnerability S
HTTP WordPress WhyDoWork AdSense Cross Site Request Forgery Vulnerability S
HTTP WordPress WhyDoWork AdSense Cross Site Scripting Vulnerability S
HTTP WordPress WooCommerce 'range' Parameter XSS Vulnerability S
HTTP WordPress WooCommerce Plugin export_filename Parameter XSS Vulnerability S
HTTP WordPress WooCommerce Plugin tab Parameter XSS Vulnerability S
HTTP Wordpress WP Support Plus Responsive Ticket System Multiple Vulnerabilities S
HTTP Wordpress WP Support Plus Responsive Ticket System Multiple Vulnerabilities_1 S
HTTP WordPress WP to Twitter Plugin Authorization Bypass Vulnerability S
HTTP WordPress Xhanch My Twitter Plugin CSRF Vulnerability S
IBM 1754 GCM16 and GCM32 prodtest.php filename Parameter Vulnerability S
IBM 1754 GCM16 and GCM32 systest.php lpres Parameter RCE Vulnerability S
Jobcontrol Extension For TYPO3 Keyword Cross-Site Scripting Vulnerability S
Jobcontrol Extension For TYPO3 Multiple SQL Injection Vulnerability S
Joomla! Face Gallery File Download Vulnerability S
Joomla! Face Gallery SQL Injection Vulnerability S
ManageEngine LinkViewFetchServlet.dat SQL injection CVE-2014-3996 Vulnerability S
ManageEngine MetadataServlet.dat SQL injection CVE-2014-3997 Vulnerability S
Multdivision CMS Autoweb Mostrar.Php SQL Injection Vulnerability S
Multiple WordPress Themes 'admin-ajax.php' Arbitrary File Download Vulnerability S
NDBLOG Blog.Php SQL Injection Vulnerability S
NETGEAR Download Center Cross-Site Scripting Vulnerability S
NETGEAR Download Center Open Redirect Vulnerability S
OKWS Server Error Page Cross Site Scripting Vulnerability S
OpenFiler 2.99.1 - Cross Site Request Forgery Vulnerability S
OpenFiler 2.99.1 - Cross Site Request Forgery Vulnerability_1 S
Photo Gallery plugin for WordPress Cross Site Scripting Vulnerability S
Photo Gallery plugin for WordPress Cross Site Scripting Vulnerability_1 S
Photo Gallery plugin for WordPress Cross Site Scripting Vulnerability_2 S
Posnic Cross Site Scripting Vulnerability S
Posnic SQL Injection Vulnerability S
RaidenTunes 'music_out.php' Cross Site Scripting Vulnerability S
Refraction theme for WordPress jwplayer.swf Cross Site Scripting Vulnerability S
Refraction theme for WordPress jwplayer.swf Cross Site Scripting Vulnerability_1 S
Restaurant Script CVE-2014-6619 Cross Site Scripting Vulnerability S
Restaurant Script CVE-2014-6619 Cross Site Scripting Vulnerability_1 S
Restaurant Script CVE-2014-6619 Cross Site Scripting Vulnerability_2 S
Seafile Server Remote Denial of Service Vulnerability S
Shellshock Bash 'DHCP Client' Vulnerability S
Shellshock Bash 'Email Based Reconnaissance' Vulnerability S
Shellshock Bash 'Email Based Reconnaissance' Vulnerability_1 S
Shellshock Bash 'ping Command' Vulnerability_1 S
Shellshock Bash 'ping Command' Vulnerability_2 S
Shellshock Bash 'Reporting back system parameters' Vulnerability_1 S
Shellshock Bash 'Reverse Shell' Vulnerability_1 S
SkaDate Lite 2.0 - Cross Site Request Forgery Vulnerability S
SkaDate Lite 2.0 - Cross Site Request Forgery Vulnerability_1 S
SkaDate Lite 2.0 - Cross Site Request Forgery Vulnerability_2 S
SkaDate Lite 2.0 - Cross Site Request Forgery Vulnerability_3 S
Smartertools Smarter Track Avatarhandler.Ashx Information Disclosure Vulnerability S
Textpattern Cross Site Scripting Vulnerability S
TomatoCart 'products.php' Cross Site Scripting Vulnerability S
vBulletin 5.1.X - Cross Site Scripting Vulnerability S
vBulletin 5.1.X - Cross Site Scripting Vulnerability_1 S
WordPress Contact Form 7 Integrations Plugin Cross Site Scripting Vulnerability S
WordPress Contact Form 7 Integrations Plugin Cross Site Scripting Vulnerability_1 S
Wordpress Easy MailChimp Forms plugin HTML Injection Vulnerability S
WordPress Gallery Objects Plugin 'admin-ajax.php' SQL Injection Vulnerability S
WordPress Photo Album Plus 5.4.4 Cross Site Scripting Vulnerability S
WordPress Photo Album Plus 5.4.4 Cross Site Scripting Vulnerability_1 S
WordPress Photo Album Plus 5.4.4 Cross Site Scripting Vulnerability_2 S
WordPress Photo Album Plus 5.4.4 Cross Site Scripting Vulnerability_3 S
WordPress Photo Album Plus 5.4.4 Cross Site Scripting Vulnerability_4 S
WordPress Photo Album Plus 5.4.4 Cross Site Scripting Vulnerability_5 S
WordPress Users Ultra 1.3.37 SQL Injection Vulnerability S
WordPress VideoWhisper Video Presentation Cross Site Scripting Vulnerability S
WordPress VideoWhisper Video Presentation Cross Site Scripting Vulnerability_1 S
WS10 Data Server Buffer Overflow Vulnerability S
X2CRM Cross-Site Scripting Vulnerability S
Zen Cart 1.5.3 - Cross Site Request Forgery Vulnerability S
Zen Cart 1.5.3 - Cross Site Request Forgery Vulnerability_1 S
Zen Cart 1.5.3 - Cross Site Scripting Vulnerability S
Zen Cart 1.5.3 - Cross Site Scripting Vulnerability_1 S
Zen Cart 1.5.3 - Cross Site Scripting Vulnerability_2 S
Zen Cart 1.5.3 - Cross Site Scripting Vulnerability_3 S
Zen Cart 1.5.3 - Cross Site Scripting Vulnerability_4 S
Zen Cart 1.5.3 - Cross Site Scripting Vulnerability_5 S
Zen Cart 1.5.3 - Cross Site Scripting Vulnerability_6 S
Zyxel P-660HNU-T1 Wzadsl.Asp Information Disclosure Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.