Search

Traffic File Update - April 2014

This Traffic IQ Professional update for April 2014 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for April 2014

117 Application Exploits

Adrenalin Player '.m3u' File Buffer Overflow Vulnerability S
Aker Secure Mail Gateway msg_id Cross-Site Scripting Vulnerability S
ALLPlayer 5.7 M3U File Buffer Overflow Vulnerability S
ALLPlayer 5.8.1 M3U File Buffer Overflow Vulnerability S
Apache Solr 'SolrResourceLoader' Directory Traversal Vulnerability S
Audiotran '.pls' File Remote Buffer Overflow Vulnerability S
Audiotran '.pls' File Remote Buffer Overflow Vulnerability_1 S
Calavera Uploader DAT File Handling Buffer Overflow Vulnerability S
Catia V5-6R2013 'CATV5_AllApplications' Buffer Overflow Vulnerability S
Catia V5-6R2013 'CATV5_Backbone_Bus' Buffer Overflow Vulnerability S
Cisco DPR2320R2 Wireless Router 'Change Password' Cross Site Request Forgery S
Cisco DPR2320R2 Wireless Router 'Change Settings' Cross Site Request Forgery S
Cisco DPR2320R2 Wireless Router 'Parental Controls' Cross Site Request Forgery S
Cisco DPR2320R2 Wireless Router 'Reboot' Cross Site Request Forgery S
ClipSharePro 4.1 Local File Inclusion Vulnerability S
Cory JobSearch 1.0 SQL Injection Vulnerability S
D-Link DIR-600L Cross Site Request Forgery Vulnerability S
D-Link DIR-600L Cross Site Request Forgery Vulnerability_1 S
e107 Cross Site Scripting Vulnerability S
e107 Cross Site Scripting Vulnerability_1 S
e107 Cross Site Scripting Vulnerability_2 S
e107 Cross Site Scripting Vulnerability_3 S
e107 Cross Site Scripting Vulnerability_4 S
e107 Cross Site Scripting Vulnerability_5 S
e107 Cross Site Scripting Vulnerability_6 S
e107 menus.php SQL Injection Vulnerability S
Eudora WorldMail imapd 'UID' Command Buffer Overflow Vulnerability S
Free Download Manager 'Downloads_Deleted.cpp' Buffer Overflow Vulnerability S
GetGo Download Manager CVE-2014-2206 Stack Buffer Overflow Vulnerability S
GoldMP4Player Flash URL Handling Buffer Overflow Vulnerability S
GoldMP4Player Flash URL Handling Buffer Overflow Vulnerability_1 S
Haihaisoft HUPlayer 'asx' URL Processing Buffer Overflow Vulnerability S
Haihaisoft HUPlayer 'm3u' URL Processing Buffer Overflow Vulnerability S
Haihaisoft HUPlayer 'pls' URL Processing Buffer Overflow Vulnerability S
Haihaisoft Universal Player 'asx' URL Processing Buffer Overflow Vulnerability S
Haihaisoft Universal Player 'm3u' URL Processing Buffer Overflow Vulnerability S
Haihaisoft Universal Player 'pls' URL Processing Buffer Overflow Vulnerability S
HP Storage Data Protector OmniInet.exe Remote Code Execution Vulnerability S
HTTP Ajax File and Image Manager 'search_folder' Directory Traversal Vulnerability S
HTTP Apache CouchDB UUID CVE-2014-2668 Remote DoS Vulnerability S
HTTP ASP-Nuke 'gotourl.asp' Open Redirection Vulnerability S
HTTP ATutor config_edit.php site_name Parameter Stored XSS Vulnerability S
HTTP ATutor forum_add.php description Parameter Stored XSS Vulnerability S
HTTP ATutor install.php Multiple Parameter XSS Vulnerability S
HTTP ATutor install.php Multiple Parameter XSS Vulnerability_1 S
HTTP Cart Engine task.php Path Traversal Local File Inclusion Vulnerability S
HTTP D-Link DIR-600L 'formSetPassword' Admin Password CSRF Vulnerability S
HTTP Embedthis Goahead Webserver Malformed HTTP GET Request Remote DoS Vulnerability S
HTTP GDL download.php id Parameter SQL Injection Vulnerability S
HTTP GDL gdl.php keyword Parameter XSS Vulnerability S
HTTP GDL gdl.php Multiple Parameter Remote File Access Vulnerability S
HTTP GDL index.php Multiple Parameter Remote File Access Vulnerability S
HTTP GNUPanel New Ticket Page Comment Field Stored XSS Vulnerability S
HTTP Huawei E5331 'security-settings' Information Disclosure Vulnerability S
HTTP Huawei E5331 'wps' Information Disclosure Vulnerability S
HTTP Joomla AJAX Shoutbox Component jal_lastID SQL Injection Vulnerability S
HTTP Kemana Directory task.php run Parameter Path Traversal Vulnerability S
HTTP LuxCal 'index.php' Admin User Creation CSRF Vulnerability S
HTTP LuxCal 'rssfeed.php' cal Parameter SQL Injection Vulnerability S
HTTP Maian Uploader load_flv.js.php Cross Site Scripting Vulnerability S
HTTP MeiuPic 'ctl' Parameter Local File Include Vulnerability S
HTTP OpenCart 'product_id' Parameter SQL Injection Vulnerability S
HTTP OpenSupports 'staffadmin.php' Staff Account Creation CSRF Vulnerability S
HTTP Piwigo 'ws.php' Cross-Site Request Forgery Vulnerability S
HTTP Plex Media Server Directory Traversal Vulnerability S
HTTP Plex Media Server Directory Traversal Vulnerability_1 S
HTTP SePortal staticpages.php sp_id Parameter SQL Injection Vulnerability S
HTTP Stark CRM add_insurance_cat.php Multiple Parameter XSS Vulnerabilities S
HTTP Stark CRM add_status.php status Parameter Stored XSS Vulnerability S
HTTP Stark CRM client.php Multiple Parameter Stored XSS Vulnerability S
HTTP Stark CRM index.php Multiple User Creation CSRF Vulnerability S
HTTP Technicolor TC7200 CVE-2014-1677 Admin Password Disclosure Vulnerability S
HTTP Tripwire Enterprise '.methodCall.do' Cross Site Scripting Vulnerability S
HTTP VideoWhisper Live Streaming channel.php n Parameter Reflected XSS Vulnerability S
HTTP VideoWhisper Live Streaming htmlchat.php n Parameter Reflected XSS Vulnerability S
HTTP VideoWhisper Live Streaming lb_status.php m Parameter XSS Vulnerability S
HTTP VideoWhisper Live Streaming lb_status.php Mutiple Parameter XSS Vulnerability S
HTTP VideoWhisper Live Streaming rtmp_login.php s Parameter Remote File Access Vuln S
HTTP VideoWhisper Live Streaming rtmp_logout.php s Parameter Remote File Access Vuln S
HTTP VideoWhisper Live Streaming vc_chatlog.php msg Parameter Stored XSS Vulnerability S
HTTP VideoWhisper Live Streaming video.php n Parameter Reflected XSS Vulnerability S
HTTP VideoWhisper Live Streaming videotext.php n Parameter Reflected XSS Vulnerability S
HTTP VideoWhisper Live Streaming v_status.php ct Parameter Reflected XSS Vulnerability S
HTTP WordPress AdRotate Plugin 'clicktracker.php' SQL Injection Vulnerability S
HTTP Wordpress Seo Link Rotator Plugin 'pusher.php' XSS Vulnerability S
HTTP WordPress WP Forum Server 'editgroup' Parameter XSS Vulnerability S
HTTP WordPress WP Forum Server 'edit_usergroup' Parameter XSS Vulnerability S
HTTP WordPress WP Forum Server Plugin SQL Injection CVE-2012-6625 Vulnerability S
Kentico CMS 7.0.75 Information Disclosure Vulnerability S
KMPlayer Playlist Addition Album Name Field Overflow Vulnerability S
litepublisher 5.72 Cross Site Scripting Vulnerability S
MicroP MPPL File Handling Stack Buffer Overflow Vulnerability S
Microweber 'for_id' Parameter SQL Injection Vulnerability S
Ocportal 9.0.11 Cross Site Scripting Vulnerability S
Ocportal 9.0.11 Cross Site Scripting Vulnerability_1 S
Ocportal 9.0.11 Local File Inclusion Vulnerability S
OpenSSL SSLv3 Heartbeat Information Disclosure Vulnerability S
OpenSSL TLS 1.0 Heartbeat Information Disclosure Vulnerability S
OpenSSL TLS 1.1 Heartbeat Information Disclosure Vulnerability S
OpenSSL TLS 1.2 Heartbeat Information Disclosure Vulnerability S
Oxatis EmailPopupWnd.asp Cross Site Scripting Vulnerability S
SolidWorks Workgroup PDM Memory Corruption Vulnerability S
Thomson Reuters Velocity Analytics CVE-2013-5912 Remote Code Injection Vulnerability S
TP-Link TD-8840T Router 'tools_admin_1' Cross Site Request Forgery Vulnerability S
TPLINK WR740N and WR740ND 'Change Password' Cross Site Request Forgery S
TPLINK WR740N and WR740ND 'Factory Reset' Cross Site Request Forgery S
TPLINK WR740N and WR740ND 'Reboot Router' Cross Site Request Forgery S
VCDGear Cue File Handling Multiple Buffer Overflow Vulnerabilities S
VLC Media Player libmpgatofixed32_plugin.dll AVS File Vulnerability S
WordPress HTML Sitemap 1.2 Cross Site Request Forgery Vulnerability S
WordPress HTML Sitemap 1.2 Cross Site Request Forgery Vulnerability_1 S
WordPress LayerSlider 4.6.1 Cross Site Request Forgery Vulnerability S
WordPress LayerSlider 4.6.1 Cross Site Request Forgery Vulnerability_1 S
WordPress LayerSlider 4.6.1 Cross Site Request Forgery Vulnerability_2 S
WordPress LayerSlider 4.6.1 Cross Site Request Forgery Vulnerability_3 S
XCloner plugin for WordPress plugins.php Cross Site Request Forgery Vulnerability S
XCloner plugin for WordPress plugins.php Cross Site Request Forgery Vulnerability_1 S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.