Search

Traffic File Update - June 2014

This Traffic IQ Professional update for June 2014 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for June 2014

102 Application Exploits

AuraCMS filemanager.php Cross Site Scripting Vulnerability S
BSI Advance Hotel Booking System 2.0 Cross Site Scripting Vulnerability S
Burden 1.8 Privilege Escalation Vulnerability S
Cetil Cross Site Scripting Vulnerability S
ClassAd Cross Site Scripting Vulnerability S
D-Link products apply.cgi Cross Site Scripting Vulnerability S
D-Link products apply_sec.cgi Cross Site Scripting Vulnerability S
D-Link products ELF MBS MIPS Information Disclosure Vulnerability S
D-Link products hnap.cgi Information Disclosure Vulnerability S
D-Link products HNAP1 Information Disclosure Vulnerability S
Dell KACE K1000 Systems Management Appliance 'LABEL_ID' Parameter Cross Site Scripting Vuln S
Dolphin SQL Injection Vulnerability S
DotNetNuke ASPSlideshow Arbitrary File Download Vulnerability S
DotNetNuke CodeEditor Arbitrary File Download Vulnerability S
DotNetNuke dnnUI_NewsArticlesSlider Arbitrary File Download Vulnerability S
DotNetNuke EasyDnnGallery Arbitrary File Download Vulnerability S
DotNetNuke EventsCalendar Arbitrary File Download Vulnerability S
DotNetNuke ResponsiveSidebar Arbitrary File Download Vulnerability S
DZS-VideoGallery Plugin for WordPress Cross Site Scripting Vulnerability S
DZS-VideoGallery Plugin for WordPress Cross Site Scripting Vulnerability_1 S
DZS-VideoGallery Plugin for WordPress Cross Site Scripting Vulnerability_2 S
DZS-VideoGallery Plugin for WordPress Cross Site Scripting Vulnerability_3 S
easyXDM 'name.html' Cross Site Scripting Vulnerability S
Eventum 'hostname' Parameter Remote Code Execution Vulnerability S
Eventum 'hostname' Parameter Remote Code Execution Vulnerability_1 S
FCKeditor 2.6.10 Cross Site Scripting Vulnerability S
Fortinet FortiOS mkey Cross Site Scripting Vulnerability S
HTTP Comtrend CT-5361T Router ddnsmngr.cmd XSS Vulnerability S
HTTP Comtrend CT-5361T Router password.cgi CSRF Vulnerability S
HTTP ICOMM 610 Wireless Modem Cross Site Request Forgery Vulnerability S
HTTP Jigowatt PHP Event Calendar 'day_view.php' SQL Injection Vulnerability S
HTTP JS MultiHotel Plugin for WordPress 'show_image.php' DoS Vulnerability S
HTTP JS MultiHotel Plugin for WordPress 'show_image.php' file Parameter Vulnerabilities S
HTTP JS MultiHotel Plugin for WordPress delete_img.php path Parameter XSS Vulnerability S
HTTP JS MultiHotel Plugin for WordPress functions.php Path Disclosure Vulnerability S
HTTP Kloxo-MR display.php Admin Function CSRF Vulnerability S
HTTP Microsoft IE CVE-2014-0322 Use-After-Free Code Execution Vulnerability S
HTTP Microweber CMS 'save_user' Admin Account Creation CSRF Vulnerability S
HTTP NetGear N150 WNR1000v3 Password Disclosure Vulnerability S
HTTP NETGEAR N600 WNDR3400 genie_pppoe.htm PPOE Credential Reset Vulnerability S
HTTP NULL NUKE admin.php faqcattitle Parameter Stored XSS Vulnerability S
HTTP NULL NUKE admin.php file Parameter Path Traversal File Access Vulnerability S
HTTP NULL NUKE admin.php filename Parameter File Upload Command Execution Vulnerability S
HTTP NULL NUKE admin.php Multiple Action CSRF Vulnerability S
HTTP NULL NUKE admin.php upload Parameter Reflected XSS Vulnerability S
HTTP NULL NUKE login.php redirectlgn Parameter Open Redirect Vulnerability S
HTTP NULL NUKE msgbox.php msgid Parameter SQL Injection Vulnerability S
HTTP Orbit Open Ad Server 'site_directory' SQL Injection Vulnerabilitiy S
HTTP Orbit Open Ad Server 'site_directory' SQL Injection Vulnerabilitiy_1 S
HTTP PHP Login Script 'login.php' Cross Site Scripting Vulnerability S
HTTP phpMyAdmin chk_rel.php db Parameter Reflected XSS Vulnerability S
HTTP phpMyAdmin guestbook-en.pl Cross Site Request Forgery Vulnerability S
HTTP phpMyAdmin tbl_select.php table Parameter Reflected XSS Vulnerability S
HTTP phpMyAdmin xamppsecurity.php Cross Site Request Forgery Vulnerability S
HTTP QuickCms admin.php Cross Site Request Forgery Vulnerability S
HTTP QuickCms admin.php Cross Site Scripting Vulnerability S
HTTP Twitget Plugin for WordPress twitget.php CSRF Vulnerability S
HTTP WordPress Linenity Theme 'download.php' File Include Vulnerability S
Huawei E303 send-sms Cross Site Request Forgery Vulnerability S
ImpressCMS 1.3.6.1 Cross Site Scripting Vulnerability S
ImpressCMS Arbitrary File Access Vulnerability S
ImpressCMS Arbitrary File Access Vulnerability_1 S
ImpressCMS Cross Site Scripting Vulnerability S
ImpressCMS Cross Site Scripting Vulnerability_1 S
InfraRecorder '.m3u' File Buffer Overflow Vulnerability S
InterScan Messaging Security Virtual Appliance 8.5.1.1516 Cross Site Scripting Vulnerability S
Maian Uploader move.php SQL injection Vulnerability S
ManageEngine Support Center Plus 'WorkOrder.do' Directory Traversal Vulnerability S
MyBB sendthread.php Denial Of Service Vulnerability S
NICE Recording eXpress Cross Site Scripting Vulnerability S
NICE Recording eXpress Cross Site Scripting Vulnerability_1 S
NICE Recording eXpress Cross Site Scripting Vulnerability_2 S
NICE Recording eXpress Cross Site Scripting Vulnerability_3 S
NICE Recording eXpress Cross Site Scripting Vulnerability_4 S
NICE Recording eXpress Cross Site Scripting Vulnerability_5 S
NICE Recording eXpress Cross Site Scripting Vulnerability_6 S
NICE Recording eXpress Cross Site Scripting Vulnerability_7 S
Perseus' Java Hopper Cross Site Scripting Vulnerability S
Pixie CMS contact.php Cross Site Scripting Vulnerability S
Pixie CMS contact.php Cross Site Scripting Vulnerability_1 S
Pyplate addScript.py Cross Site Request Forgery Vulnerability S
Pyplate addScript.py Cross Site Request Forgery Vulnerability_1 S
Shadowbox Local File Inclusion Vulnerability S
Sharetronix admin Cross Site Request Forgery Vulnerability S
Sharetronix admin Cross Site Request Forgery Vulnerability_1 S
Sharetronix invite_users SQL Injection Vulnerability S
Sitecore CMS 'xmlcontrol' Parameter Cross-Site Scripting Vulnerability S
Sitecore CMS 'xmlcontrol' Parameter Cross-Site Scripting Vulnerability_1 S
Storesprite Cross Site Scripting Vulnerability S
Transform Foundation Server CVE-2014-2577 Cross Site Scripting Vulnerability S
Transform Foundation Server CVE-2014-2577 Cross Site Scripting Vulnerability_1 S
Transform Foundation Server CVE-2014-2577 Cross Site Scripting Vulnerability_2 S
Usercake user_settings.php Cross Site Request Forgery Vulnerability S
Usercake user_settings.php Cross Site Request Forgery Vulnerability_1 S
Web Video Streamer 'dir' Parameter Cross Site Scripting Vulnerability S
Web Video Streamer 'name' Parameter Cross Site Scripting Vulnerability S
web2project SQL Injection Vulnerability S
web2project SQL Injection Vulnerability_1 S
web2project SQL Injection Vulnerability_2 S
ZeroCMS 1.0 zero_view_article.php article_id param SQL Injection Vulnerability S
Zyxel P-660HW-T1 multiple Cross Site Request Forgery Vulnerability S
Zyxel P-660HW-T1 multiple Cross Site Request Forgery Vulnerability_1 S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.