Search

Traffic File Update - September 2014

This Traffic IQ Professional update for September 2014 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for September 2014

184 Application Exploits

Adobe Flash Player Pixel Bender Component Buffer Overflow Vulnerability S
Advantech WebAccess DBVisitor.dll SQL Injection Vulnerability S
AlienVault Open Source SIM Av-centerd SOAP Service Code Execution Vulnerability S
Apache Commons Fileupload Requests Denial Of Service Vulnerability S
BlackCat CMS Cross-Site Scripting Vulnerability S
BlazeDVD Pro '.PLF' File Remote Buffer Overflow Vulnerability S
BlazeDVD Pro '.PLF' File Remote Buffer Overflow Vulnerability_1 S
BlazeDVD Pro '.PLF' File Remote Buffer Overflow Vulnerability_2 S
Booking System Plugin For Wordpress Booking_Form_Id Sql Injection Vulnerability S
Cart Engine SQL Injection Vulnerability S
ClassApps SelectSurvey.net 4.124.004 SQL Injection Vulnerability S
CMS 2.1.1 SQL Injection Vulnerability S
CMS Agencija O2 Cross Site Scripting Vulnerability S
CMS Agencija O2 SQL Injection Vulnerability S
Concrete5 Cross Site Scripting Vulnerability S
Concrete5 Path Disclosure Vulnerability S
Concrete5 Path Disclosure Vulnerability_1 S
Concrete5 Path Disclosure Vulnerability_10 S
Concrete5 Path Disclosure Vulnerability_2 S
Concrete5 Path Disclosure Vulnerability_3 S
Concrete5 Path Disclosure Vulnerability_4 S
Concrete5 Path Disclosure Vulnerability_5 S
Concrete5 Path Disclosure Vulnerability_6 S
Concrete5 Path Disclosure Vulnerability_7 S
Concrete5 Path Disclosure Vulnerability_8 S
Concrete5 Path Disclosure Vulnerability_9 S
Construtiva Cis Manager Lembrarlogin.Asp Sql Injection Vulnerability S
Core FTP Client Response Handling CVE-2014-4643 Heap Overflow Vulnerability S
D-Link DSP-W215 do_hnap Buffer Overflow Vulnerability S
DomainTrader Domain Parking Cross Site Request Forgery Vulnerability S
DomainTrader Domain Parking Cross Site Request Forgery Vulnerability_1 S
DomainTrader Domain Parking Cross Site Request Forgery Vulnerability_2 S
e107 db.php Cross Site Scripting Vulnerability S
EFS FTP Server 3.5 PASS Command Buffer Overflow Vulnerability S
F5 BIG-IP 11.5.1 Cross Site Scripting Vulnerability S
Food Order Portal 8.3 Cross Site Request Forgery Vulnerability S
Food Order Portal 8.3 Cross Site Request Forgery Vulnerability_1 S
Furniture Site Manager SQL Injection Vulnerability S
grandMA2 onPC Remote Denial of Service Vulnerability S
HTTP Ablyss CMS Touch 'news.php' XSS Vulnerability S
HTTP Ablyss CMS Touch 'products.php' XSS Vulnerability S
HTTP ArticleFR 'id' Parameter get action SQL Injection Vulnerability S
HTTP ArticleFR 'id' Parameter set action SQL Injection Vulnerability S
HTTP Barracuda Web Application Firewall CVE-2014-2595 Vulnerability S
HTTP Cacti superlinks Plugin 'id' Parameter SQL Injection Vulnerability S
HTTP CMS Made Simple addbookmark.php Multiple Parameter Reflected XSS Vulnerability S
HTTP CMS Made Simple addcss.php css_name Parameter Stored XSS Vulnerability S
HTTP CMS Made Simple myaccount.php Multiple Parameter Stored XSS Vulnerability S
HTTP CMS Made Simple pagedefaults.php Multiple Parameter Stored XSS Vulnerability S
HTTP CMS Made Simple pagedefaults.php Multiple Parameter Stored XSS Vulnerability_1 S
HTTP CMS Made Simple siteprefs.php Multiple Parameter Stored XSS Vulnerability S
HTTP CMS Made Simple siteprefs.php Multiple Parameter Stored XSS Vulnerability_1 S
HTTP Dell SonicWALL Multiple Products 'node_id' parameter XSS Vulnerability S
HTTP Facebook Promotion Generator Plugin Multiple XSS Vulnerabilities S
HTTP Glossaire Module for XOOPS glossaire-aff.php SQL Injection Vulnerability S
HTTP Halon Security Router add users CSRF Vulnerability S
HTTP Halon Security Router change DNS CSRF Vulnerability S
HTTP Halon Security Router commands command Parameter XSS Vulnerability S
HTTP Halon Security Router config uri Parameter XSS Vulnerability S
HTTP Halon Security Router fileviewer file Parameter XSS Vulnerability S
HTTP Halon Security Router graphs graph Parameter XSS Vulnerability S
HTTP Halon Security Router logviewer log Parameter XSS Vulnerability S
HTTP Halon Security Router Multiple Script uri Parameter Redirect Vulnerability S
HTTP Halon Security Router Multiple Script uri Parameter Redirect Vulnerability_1 S
HTTP Halon Security Router users id Parameter XSS Vulnerability S
HTTP Joomla Spider Video Player Extension 'theme' SQL Injection Vulnerability S
HTTP Kolibri CVE-2014-4158 Stack Based Buffer Overflow Vulnerability S
HTTP Kolibri CVE-2014-4158 Stack Based Buffer Overflow Vulnerability_1 S
HTTP Kolibri HEAD request Remote Buffer Overflow Vulnerability S
HTTP Kolibri HEAD request Remote Buffer Overflow Vulnerability_1 S
HTTP Kolibri HEAD request Remote Buffer Overflow Vulnerability_2 S
HTTP Kolibri HEAD request Remote Buffer Overflow Vulnerability_3 S
HTTP Kolibri WebServer GET Request Buffer Overflow Vulnerability S
HTTP Mailspect monitor_logs_ctl.cgi Multiple File Disclosure Vulnerabilities S
HTTP ManageEngine DeviceExpert CVE-2014-5377 Information Disclosure Vulnerability S
HTTP McAfee Asset Manager ReportsAudit.jsp SQL Injection Vulnerability S
HTTP ntopng 'rrdPlugin' CVE-2014-4165 XSS Vulnerability S
HTTP Oracle Endeca Server CVE-2014-2399 Remote CSRF Vulnerability S
HTTP Oracle Endeca Server CVE-2014-2399 Remote CSRF Vulnerability_1 S
HTTP Photo WiFi Transfer 'path' Parameter Path Traversal Vulnerability S
HTTP PrestaShop SQL Injection and XSS Vulnerabilities S
HTTP PrestaShop SQL Injection and XSS Vulnerabilities_1 S
HTTP Sentinel Protection Server Directory Traversal Vulnerability S
HTTP Shellshock GNU Bash 'Cookie' Command Execution Vulnerability S
HTTP Shellshock GNU Bash 'Cookie' Command Execution Vulnerability_1 S
HTTP Shellshock GNU Bash 'User Agent' Command Execution Vulnerability S
HTTP Shellshock GNU Bash 'User Agent' Command Execution Vulnerability_1 S
HTTP Shellshock GNU Bash 'User Agent' Command Execution Vulnerability_2 S
HTTP Skybox View Appliance getNetworkConfigurationInfo Information Disclosure S
HTTP Skybox View Appliance getSystemInformation Information Disclosure S
HTTP Skybox View Appliance Remote Reboot DOS Vulnerability S
HTTP Skybox View Appliance Remote Shutdown DOS Vulnerability S
HTTP SQL Buddy 'browse.php' CVE-2014-4304 XSS Vulnerability S
HTTP TomatoCart 'info.php' Cross Site Scripting Vulnerability S
HTTP Videos Tube single.php url Parameter SQL Injection Vulnerability S
HTTP Videos Tube videocat.php url Parameter SQL Injection Vulnerability S
HTTP webEdition CMS 'we_fs.php' CVE-2014-2303 SQL Injection Vulnerability S
HTTP webEdition CMS 'we_fs.php' CVE-2014-2303 SQL Injection Vulnerability_1 S
HTTP WordPress ActiveHelper LiveHelp Live Chat Plugin CVE-2014-4513 XSS Vulnerability S
HTTP WordPress anyfont Plugin 'dialog.php' CVE-2014-4515 XSS Vulnerability S
HTTP WordPress Download Shortcode Plugin 'force-download.php' LFI Vulnerability S
HTTP Wordpress Game Speed Theme 'timthumb.php' XSS Vulnerability S
HTTP WordPress SI CAPTCHA Anti-Spam Plugin 'index.php' XSS Vulnerability S
HTTP WordPress TimThumb WebShot Feature Arbitrary Code Execution Vulnerability S
HTTP WordPress WP Content Source Control Plugin 'download.php' CVE-2014-5368 Vulnerability S
HTTP WordPress wpSS Plugin 'ss_handler.php' SQL Injection Vulnerability S
HTTP WordPress wpSS Plugin 'ss_handler.php' XSS Vulnerability S
HTTP Yealink IP Phone SIP-T38G cgiServer.exx command Parameter CVE-2013-5757 Vulnerability S
HTTP Yealink IP Phone SIP-T38G cgiServer.exx page Parameter CVE-2013-5756 Vulnerability S
HTTP Yealink VoIP Phone SIP-T38G 'cgiServer.exx' CVE-2013-5758 Vulnerability S
HTTP Yealink VoIP Phones 'servlet' CVE-2014-3428 XSS Vulnerability S
Huge-IT Image Gallery plugin for WordPress SQL injection Vulnerability S
IBM Sametime Meet Server 8.5 Cross Site Scripting Vulnerability S
IBM Sametime Meet Server 8.5 Cross Site Scripting Vulnerability_1 S
In-Portal CMS Cross Site Scripting Vulnerability S
In-Portal CMS Cross Site Scripting Vulnerability_1 S
Jamroom Cross Site Scripting Vulnerability S
Jenkins CI Cross Site Request Forgery Vulnerability S
Jenkins CI Cross Site Request Forgery Vulnerability_1 S
Joomla Spider Form Maker 3.4 SQL Injection Vulnerability S
Kitform Sorter.Php Sql Injection Vulnerability S
LittleSite 0.1 'file' Parameter Local File Include Vulnerability S
MMonit 3.2.2 Cross Site Request Forgery Vulnerability S
MMonit 3.2.2 Cross Site Request Forgery Vulnerability_1 S
Mpay24 Payment Module 1.5 Information Disclosure Vulnerability S
Mpay24 Payment Module 1.5 SQL Injection Vulnerability S
MyWebSQL Cross Site Scripting Vulnerability S
Openssl Cssl Tls Clients And Servers MITM Vulnerability S
Oracle Event Processing FileUploadServlet Servlet Directory Traversal Vulnerability S
PhpNuke Web Links Modules.Php Sql Injection Vulnerability S
SHARP MX Series Printers Print Command Handling Buffer Overflow Vulnerability S
Sniggabo CMS cms.php Cross Site Scripting Vulnerability S
Sniggabo CMS shop.php Cross Site Scripting Vulnerability S
Softmatica Smart Ipbx Editarclave.Php Sql Injection Vulnerability S
Subex ROC Fraud Management System 7.4 SQL Injection Vulnerability S
Tftpd32 And Tftpd64 Request Denial Of Service Vulnerability S
TORQUE CVE-2014-0749 Stack Buffer Overflow Vulnerability S
TP-Link WR340g WR340GD DomainFilterRpm.htm XSS Vulnerability S
TP-Link WR340g WR340GD DynDdnsRpm.htm XSS Vulnerability S
TP-Link WR340g WR340GD LanDhcpServerRpm.htm XSS Vulnerability S
TP-Link WR340g WR340GD ManageControlRpm.htm XSS Vulnerability S
TP-Link WR340g WR340GD NetworkLanCfgRpm.htm XSS Vulnerability S
TP-Link WR340g WR340GD SystemLogRpm.htm XSS Vulnerability S
TP-Link WR340g WR340GD WanDynamicIpCfgRpm.htm XSS Vulnerability S
TP-Link WR340g WR340GD WlanNetworkRpm.htm XSS Vulnerability S
Travel Portal II 6.0 Cross Site Request Forgery S
Travel Portal II 6.0 Cross Site Request Forgery_1 S
Ubisoft Rayman Legends 'memset()' Function CVE-2014-4334 Vulnerability S
Ups Web Snmp-Manager Cs121 Service Port Information Disclosure Vulnerability S
VideoWhisper Module Drupal logout.tpl.php Cross-site Scripting Vulnerability S
VTLS Virtua InfoStation.cgi SQL Injection Vulnerability S
VTLS Virtua InfoStation.cgi SQL Injection Vulnerability_1 S
webEdition Path Traversal Vulnerability S
Wing FTP Server Authenticated Command Execution Vulnerability S
WordPress All In One plugin SQL Injection Vulnerability S
WordPress All In One plugin SQL Injection Vulnerability_1 S
WordPress All in One SEO Pack plugin post.php Cross Site Scripting Vulnerability S
WordPress Download Manager Plugin Arbitrary File Upload Vulnerability S
WordPress Download Manager Plugin Information Disclosure Vulnerability S
WordPress Flash Photo Gallery Plugin Cross Site Scripting Vulnerability S
WordPress Game tabs Plugin 'main_page.php' Cross Site Scripting Vulnerability S
WordPress Keyword Strategy Internal Links plugin Cross Site Scripting Vulnerability S
WordPress Keyword Strategy Internal Links plugin Cross Site Scripting Vulnerability_1 S
WordPress Keyword Strategy Internal Links plugin Cross Site Scripting Vulnerability_2 S
WordPress Multiple Themes Arbitrary File Download Vulnerability S
WordPress MyBand Theme Cross Site Scripting Vulnerability S
WordPress NativeChurch File Download Vulnerability S
Wordpress NextGEN Gallery Plugin 2.0.63 File Upload Vulnerability S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_1 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_2 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_3 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_4 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_5 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_6 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_7 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_8 S
WordPress Pay Per Media Play Plugin Cross Site Scripting Vulnerability_9 S
WordPress Swipe Checkout for Jigoshop Plugin Cross Site Scripting Vulnerability S
WWW File Share Pro v7.0 - Denial of Service Vulnerability S
Xshopsaz CMS Cross Site Scripting Vulnerability S
Xshopsaz CMS SQL Injection Vulnerability S
Yokogawa CENTUM CS 3000 BKCLogSvr.exe Buffer Overflow Vulnerability S
Your Online Shop Cross Site Scripting Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.