Search

Traffic File Update - July 2014

This Traffic IQ Professional update for July 2014 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for July 2014

134 Application Exploits

Adobe Flash Player Underflow Code Execution Vulnerability S
ALLPlayer '.wav' File Processing Memory Corruption Vulnerability S
Apache Struts ParametersInterceptor Code Execution Vulnerability S
Apache Struts ParametersInterceptor Security Bypass Vulnerability S
Atom CMS Shell Upload Vulnerability S
Atom CMS SQL Injection Vulnerability S
Beetel Router Cross-site Request Forgery Vulnerability S
BoltWire index.php File Upload Vulnerability S
C99.php Shell - Authentication Bypass Vulnerability S
CyberLink Power2Go Essential UserName Registry Field Handling Vulnerability S
E2 SQL Injection Vulnerability S
EagleGet Malformed Setting.dat File Handling Vulnerability S
EMC Documentum eRoom Stored Cross Site Scripting Vulnerability S
EMC Documentum eRoom Stored Cross Site Scripting Vulnerability_1 S
FoeCMS Cross Site Scripting Vulnerability S
FoeCMS Cross Site Scripting Vulnerability_1 S
FoeCMS Redirection Vulnerability S
FoeCMS SQL Injection Vulnerability S
FreePBX view.functions.php Code Execution Vulnerability S
GOM Player '.ogg' File CVE-2014-3216 Memory Corruption Vulnerability S
HTTP AoA Audio Extractor Basic 'InitLicenKeys()' Buffer Overflow Vulnerability S
HTTP AoA DVD Creator 'InitLicenKeys()' Buffer Overflow Vulnerability_1 S
HTTP AoA MP4 Converter 'InitLicenKeys()' Buffer Overflow Vulnerability_1 S
HTTP Binatone DT 850W Wireless Router Admin Password CSRF Vulnerability S
HTTP Binatone DT 850W Wireless Router Factory Reset CSRF Vulnerability S
HTTP Binatone DT 850W Wireless Router Password & SSID Change CSRF Vulnerability S
HTTP Binatone DT 850W Wireless Router Restart CSRF Vulnerability S
HTTP Citas Medicas (CiMe) Username Cross Site Scripting Vulnerability S
HTTP Citas Medicas (CiMe) Username SQL Injection Vulnerability S
HTTP CMS Made Simple Cross Site Scripting Vulnerability S
HTTP CMS Made Simple Cross Site Scripting Vulnerability_1 S
HTTP CMS Made Simple Cross Site Scripting Vulnerability_2 S
HTTP CMS Made Simple Cross Site Scripting Vulnerability_3 S
HTTP CMS Made Simple Cross Site Scripting Vulnerability_4 S
HTTP CMS Made Simple Cross Site Scripting Vulnerability_5 S
HTTP DotItYourself 'dot-it-yourself.cgi' Remote Command Execution Vulnerability S
HTTP Easy Address Book Web Server UserID Buffer Overflow Vulnerability S
HTTP Easy Chat Server chat.ghp username Parameter Overflow Vulnerability S
HTTP Easy File Management Web Server UserID Buffer Overflow CVE-2014-3791 Vulnerability S
HTTP Easy File Management Web Server UserID Buffer Overflow CVE-2014-3791 Vulnerability_1 S
HTTP Easy File Management Web Server UserID Buffer Overflow CVE-2014-3791 Vulnerability_2 S
HTTP Embedthis Goahead Webserver HTTP GET Request Remote DoS Vulnerability S
HTTP Ex Libris ALEPH 500 CVE-2014-3718 Multiple HTML Injection Vulnerabilities S
HTTP Ex Libris ALEPH 500 CVE-2014-3718 Multiple HTML Injection Vulnerabilities_1 S
HTTP Flying Cart 'index.php' CVE-2014-3846 XSS Vulnerability S
HTTP Horde Webmail go.php url Parameter Open Redirect Vulnerability S
HTTP Kolibri GET Request Buffer Overflow Vulnerability S
HTTP Mozilla Firefox 'xul.dll' NULL Pointer Dereference DoS Vulnerability S
HTTP MyBB 'misc.php' Remote Denial of Service Vulnerability S
HTTP SAP NetWeaver Business Client Multiple CVE-2014-4160 XSS Vulnerabilities S
HTTP SAP SRM 'umTestSSO.jsp' CVE-2014-4159 Open Redirection Vulnerability S
HTTP SAP SRM 'url' Parameter CVE-2014-4161 XSS Vulnerability S
HTTP Western Digital Arkeia Virtual Appliance Local File Include Vulnerability S
HTTP Wiser Backup Information Disclosure Vulnerability S
HTTP WordPress bib2html Plugin 'styleShortName' CVE-2014-3870 XSS Vulnerability S
HTTP WordPress Blogstand Banner Plugin 'options-general.php' XSS Vulnerability S
HTTP WordPress Conversion Ninja Plugin 'id' CVE-2014-4017 XSS Vulnerability S
HTTP WordPress DMCA WaterMarker Plugin 'phprack.php' CVE-2014-4520 XSS Vulnerability S
HTTP WordPress Elegance Theme dl-skin.php Local File Disclosure Vulnerability S
HTTP WordPress Featured Comments Plugin CVE-2014-4163 CSRF Vulnerability S
HTTP WordPress JW Player for Flash & HTML5 Video Plugin CSRF Vulnerability S
HTTP WordPress Malware Finder Plugin 'process.php' CVE-2014-4538 XSS Vulnerability S
HTTP WordPress Meta Slider Plugin 'admin.php' XSS CVE-2014-4846 Vulnerability S
HTTP WordPress Simple Popup Plugin 'z' CVE-2014-3921 XSS Vulnerability S
HTTP WordPress VN-Calendar Plugin CVE-2014-4571 Multiple XSS Vulnerabilities S
HTTP WordPress WooCommerce SagePay Direct Payment Gateway Plugin XSS Vulnerability S
HTTP WordPress WordPress Responsive Preview Plugin 'index.php' XSS Vulnerability S
HTTP WordPress WP GuestMap Plugin 'guest-locator.php' XSS Vulnerability S
HTTP WordPress WP GuestMap Plugin 'online-tracker.php' XSS Vulnerability S
HTTP WordPress WP GuestMap Plugin 'stats-map.php' XSS Vulnerability S
HTTP WordPress WP GuestMap Plugin 'weather-map.php' XSS Vulnerability S
HTTP WordPress XEN Carousel 'xencarousel-admin.js.php' XSS Vulnerabilities S
HTTP Xangati XSR And XNR Directory Traversal Vulnerability S
HTTP Xangati XSR And XNR Directory Traversal Vulnerability_1 S
HTTP Xangati XSR And XNR Directory Traversal Vulnerability_2 S
HTTP Xangati XSR And XNR Directory Traversal Vulnerability_3 S
HTTP Xshop 'ftp' Parameter Cross Site Scripting Vulnerability S
Intel Indeo Video CVE-2014-3735 Memory Corruption Vulnerability S
InvGate Service Desk 4.2.36 SQL Injection Vulnerability S
jetAudio '.ogg' File CVE-2014-3443 Memory Corruption Vulnerability S
Kanboard Cross Site Request Forgery Vulnerability S
Kanboard Cross Site Request Forgery Vulnerability_1 S
Lime Survey 2.05 Build 140618 Cross Site Scripting Vulnerability S
Lime Survey 2.05 Build 140618 Cross Site Scripting Vulnerability_1 S
Lime Survey 2.05 Build 140618 SQL Injection Vulnerability S
Lime Survey 2.05 Build 140618 SQL Injection Vulnerability_1 S
McAfee Asset Manager DownloadReport Directory Traversal Vulnerability S
Microsoft Internet Explorer GIFAS Code Execution Vulnerability S
Microsoft Internet Explorer GIFAS Code Execution Vulnerability_1 S
Microsoft Internet Explorer GIFAS Code Execution Vulnerability_2 S
Microsoft Word CVE-2014-1761 Remote Memory Corruption Vulnerability S
NetGear DGN2200 N300 Wireless Router Command Execution Vulnerability S
NetGear DGN2200 N300 Wireless Router DNS Lookup Command Vulnerability S
NetGear DGN2200 N300 Wireless Router UPNP CSRF Vulnerability S
Octavo CMS 'viewer.php' Cross Site Scripting Vulnerability S
OpenSSL DTLS Buffer Overflow Vulnerability S
osTicket account.php Multiple Parameter Cross Site Scripting Vulnerability S
osTicket account.php Multiple Parameter Cross Site Scripting Vulnerability_1 S
osTicket account.php Multiple Parameter Cross Site Scripting Vulnerability_2 S
osTicket account.php Multiple Parameter Cross Site Scripting Vulnerability_3 S
osTicket open.php Cross Site Scripting Vulnerability S
RealPlayer '.3gp' File Processing CVE-2014-3444 Memory Corruption Vulnerability S
SpamTitan auth-settings-x.php Cross Site Scripting Vulnerability S
Symbiose Webos 'path' Parameter Cross Site Scripting Vulnerability S
WeBid register.php Cross Site Scripting Vulnerability S
WeBid register.php Cross Site Scripting Vulnerability_1 S
WeBid register.php Cross Site Scripting Vulnerability_10 S
WeBid register.php Cross Site Scripting Vulnerability_11 S
WeBid register.php Cross Site Scripting Vulnerability_12 S
WeBid register.php Cross Site Scripting Vulnerability_13 S
WeBid register.php Cross Site Scripting Vulnerability_14 S
WeBid register.php Cross Site Scripting Vulnerability_2 S
WeBid register.php Cross Site Scripting Vulnerability_3 S
WeBid register.php Cross Site Scripting Vulnerability_4 S
WeBid register.php Cross Site Scripting Vulnerability_5 S
WeBid register.php Cross Site Scripting Vulnerability_6 S
WeBid register.php Cross Site Scripting Vulnerability_7 S
WeBid register.php Cross Site Scripting Vulnerability_8 S
WeBid register.php Cross Site Scripting Vulnerability_9 S
WeBid user_login.php username Parameter Cross Site Scripting Vulnerability S
WordPress BSK PDF Manager 1.3.2 SQL Injection Vulnerability S
WordPress BSK PDF Manager 1.3.2 SQL Injection Vulnerability_1 S
WordPress Hot Files File Sharing Download Manager Plugin Cross Site Scripting Vulnerability S
WordPress SnapApp Plugin CVE-2014-4596 Cross Site Scripting Vulnerability S
WordPress SnapApp Plugin CVE-2014-4596 Cross Site Scripting Vulnerability_1 S
WordPress URL Cloak and Encrypt Plugin 'go.php' Cross Site Scripting Vulnerability S
WordPress WP Microblogs Plugin 'get.php' Cross Site Scripting Vulnerability S
WordPress WP Plugin Manager Plugin Cross Site Scripting Vulnerability S
WordPress WP RESTful Plugin CVE-2014-4595 Cross Site Scripting Vulnerability S
WordPress WP RESTful Plugin CVE-2014-4595 Cross Site Scripting Vulnerability_1 S
WordPress WP RESTful Plugin CVE-2014-4595 Cross Site Scripting Vulnerability_2 S
WordPress WP Style It Plugin font-form.php Cross Site Scripting Vulnerability S
WordPress WP Ultimate Email Marketer Plugin Cross Site Scripting Vulnerability S
WordPress WP Ultimate Email Marketer Plugin Cross Site Scripting Vulnerability_1 S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.