Search

Traffic File Update - December 2015

This Traffic IQ Professional update for December 2015 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for December 2015

152 Application Exploits

HTTP AdaptCMS CVE-2015-1058 - 'categories' XSS S
HTTP AdaptCMS CVE-2015-1058 - 'fields' XSS S
HTTP AdaptCMS CVE-2015-1058 - 'forums' XSS S
HTTP AdaptCMS CVE-2015-1058 - 'links' XSS S
HTTP AdaptCMS CVE-2015-1058 - 'tools' XSS S
HTTP Arastta 1.1.5 - SQL Injection Vulnerability S
HTTP Arris TG1682G Modem XSS Vulnerability (From Server) S
HTTP Arris TG1682G Modem XSS Vulnerability (To Server) S
HTTP Beezfud - 'earliest' Remote Code Execution (Percent Encoded) S
HTTP Beezfud - 'earliest' Remote Code Execution S
HTTP Beezfud - 'latest' Remote Code Execution S
HTTP Beezfud - 'lookback' Remote Code Execution S
HTTP Beezfud - 'max' Remote Code Execution S
HTTP Beezfud - 'range' Remote Code Execution S
HTTP Belkin N150 Wireless Home Router F9K1009 v1 - Script Injection S
HTTP Belkin N150 Wireless Home Router F9K1009 v1 - Session Hijacking S
HTTP Cambium ePMP 1000 - 'buf_size' Command Injection S
HTTP Cambium ePMP 1000 - 'packets_num' Command Injection S
HTTP Cambium ePMP 1000 - 'ping_ip' Command Injection S
HTTP Cambium ePMP 1000 - 'traceroute' Command Injection S
HTTP Cambium ePMP 1000 - 'ttl' Command Injection S
HTTP Cambium ePMP 1000 - Information Disclosure (Percent Encoded) S
HTTP Cambium ePMP 1000 - Information Disclosure S
HTTP Cambium ePMP 1000 - Privilege Escalation S
HTTP CF Image Host Cross Site Scripting Vulnerability S
HTTP CF Image Host Cross Site Scripting Vulnerability_1 S
HTTP CF Image Host Cross Site Scripting Vulnerability_2 S
HTTP CF Image Host CSRF Vulnerability (From Server) S
HTTP CF Image Host CSRF Vulnerability (To Server) S
HTTP dotCMS Cross Site Scripting Vulnerability S
HTTP dotCMS Cross Site Scripting Vulnerability_1 S
HTTP dotCMS Cross Site Scripting Vulnerability_2 S
HTTP dotCMS Cross Site Scripting Vulnerability_3 S
HTTP dotCMS Cross Site Scripting Vulnerability_4 S
HTTP dotCMS Cross Site Scripting Vulnerability_5 S
HTTP dotCMS Cross Site Scripting Vulnerability_6 S
HTTP dotCMS Cross Site Scripting Vulnerability_7 S
HTTP dotCMS Cross Site Scripting Vulnerability_8 S
HTTP dotCMS Cross Site Scripting Vulnerability_9 S
HTTP dotCMS CSRF Vulnerability (From Server) S
HTTP dotCMS CSRF Vulnerability (To Server) S
HTTP ECommerceMajor - (productdtl.php prodid param) SQL Injection (Percent Encoded) S
HTTP ECommerceMajor - (productdtl.php prodid param) SQL Injection S
HTTP F5 iControl iCall Script Root Command Execution S
HTTP Horde Groupware CVE-2015-7984 'cmdshell' CSRF (From Server) S
HTTP Horde Groupware CVE-2015-7984 'cmdshell' CSRF (To Server) S
HTTP Horde Groupware CVE-2015-7984 'phpshell' CSRF (From Server) S
HTTP Horde Groupware CVE-2015-7984 'phpshell' CSRF (To Server) S
HTTP Horde Groupware CVE-2015-7984 'sqlshell' CSRF (From Server) S
HTTP Horde Groupware CVE-2015-7984 'sqlshell' CSRF (To Server) S
HTTP HumHub 0.11.2 and 0.20.0-beta.2 - SQL Injection (Percent Encoded) S
HTTP HumHub 0.11.2 and 0.20.0-beta.2 - SQL Injection S
HTTP iy10 Dizin Scripti - Admin Password Change CSRF (From Server) S
HTTP iy10 Dizin Scripti - Admin Password Change CSRF (To Server) S
HTTP MyCustomers CMS 1.3.873 - SQL Injection Vulnerability (Percent Encoded) S
HTTP MyCustomers CMS 1.3.873 - SQL Injection Vulnerability S
HTTP ntop-ng 2.0.151021 - Privilege Escalation (Percent Encoded) S
HTTP ntop-ng 2.0.151021 - Privilege Escalation S
HTTP OpenMRS 2.3 (1.11.4) - 'reportDesignPortlet' Local File Disclosure S
HTTP OpenMRS 2.3 (1.11.4) - 'reportProcessorPortlet' Local File Disclosure S
HTTP OpenMRS 2.3 (1.11.4) - Expression Language Injection (Percent Encoded) S
HTTP OpenMRS 2.3 (1.11.4) - Expression Language Injection S
HTTP OpenMRS Cross Site Scripting Vulnerability S
HTTP OpenMRS Cross Site Scripting Vulnerability_1 S
HTTP OpenMRS Cross Site Scripting Vulnerability_10 S
HTTP OpenMRS Cross Site Scripting Vulnerability_11 S
HTTP OpenMRS Cross Site Scripting Vulnerability_12 S
HTTP OpenMRS Cross Site Scripting Vulnerability_13 S
HTTP OpenMRS Cross Site Scripting Vulnerability_14 S
HTTP OpenMRS Cross Site Scripting Vulnerability_15 S
HTTP OpenMRS Cross Site Scripting Vulnerability_16 S
HTTP OpenMRS Cross Site Scripting Vulnerability_17 S
HTTP OpenMRS Cross Site Scripting Vulnerability_18 S
HTTP OpenMRS Cross Site Scripting Vulnerability_19 S
HTTP OpenMRS Cross Site Scripting Vulnerability_2 S
HTTP OpenMRS Cross Site Scripting Vulnerability_20 S
HTTP OpenMRS Cross Site Scripting Vulnerability_21 S
HTTP OpenMRS Cross Site Scripting Vulnerability_22 S
HTTP OpenMRS Cross Site Scripting Vulnerability_23 S
HTTP OpenMRS Cross Site Scripting Vulnerability_24 S
HTTP OpenMRS Cross Site Scripting Vulnerability_25 S
HTTP OpenMRS Cross Site Scripting Vulnerability_26 S
HTTP OpenMRS Cross Site Scripting Vulnerability_3 S
HTTP OpenMRS Cross Site Scripting Vulnerability_4 S
HTTP OpenMRS Cross Site Scripting Vulnerability_5 S
HTTP OpenMRS Cross Site Scripting Vulnerability_6 S
HTTP OpenMRS Cross Site Scripting Vulnerability_7 S
HTTP OpenMRS Cross Site Scripting Vulnerability_8 S
HTTP OpenMRS Cross Site Scripting Vulnerability_9 S
HTTP Oracle Fusion Middleware CVE-2015-4877 Local Security Vulnerability S
HTTP Ovidentia absences Module 2.64 - Remote File Inclusion S
HTTP Ovidentia bulletindoc Module 2.9 - 'admin.php' Remote File Inclusion S
HTTP Ovidentia bulletindoc Module 2.9 - 'main.php' Remote File Inclusion S
HTTP Ovidentia online Module 2.8 - GLOBALS[babAddonPhpPath] RFI S
HTTP PHP Utility Belt - Remote Code Execution S
HTTP Piwik 2.14.3 Local File Inclusion (Percent Encoded) S
HTTP Piwik 2.14.3 Local File Inclusion S
HTTP Piwik 2.14.3 PHP Object Injection (Percent Encoded) S
HTTP Piwik 2.14.3 PHP Object Injection S
HTTP Restaurantbiller-SQL-Injection (Percent Encoded) S
HTTP Restaurantbiller-SQL-Injection S
HTTP SIMOGEO FileManager 2.3.0 - File Upload S
HTTP SIMOGEO FileManager 2.3.0 - Path Traversal S
HTTP vBulletin 5.1.2 Unserialize Code Execution S
HTTP WordPress Calls to Action Plugin Multiple XSS Vulnerability S
HTTP WordPress Calls to Action Plugin Multiple XSS Vulnerability_1 S
HTTP WordPress Gwolle Guestbook Plugin 1.5.3 - RFI (Percent Encoded) S
HTTP WordPress Gwolle Guestbook Plugin 1.5.3 - RFI S
HTTP WordPress Plugin Advanced uploader v2.10 - File Upload S
HTTP WordPress Plugin Advanced uploader v2.10 - Information Disclosure S
HTTP WordPress Plugin Sell Download v1.0.16 - Local File Disclosure S
HTTP WordPress Plugin TheCartPress v1.4.7 - LFD (Percent Encoded) S
HTTP WordPress Plugin TheCartPress v1.4.7 - LFD S
HTTP WordPress Plugin TheCartPress v1.4.7 - RCE (Percent Encoded) S
HTTP WordPress Plugin TheCartPress v1.4.7 - RCE S
HTTP WordPress Polls Widget Plugin 1.0.7 - SQL Injection S
HTTP WordPress Role Scoper Plugin XSS Vulnerability S
HTTP WordPress Ultimate Member Plugin XSS Vulnerability S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'delete_gallery' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'delete_photo' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'delete_video' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'edit_gallery' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'edit_gallery_confirm' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'edit_photo' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'edit_photo_confirm' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'edit_video' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'edit_video_confirm' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'reload_photos' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'reload_videos' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'set_as_main_photo' gal_id Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'set_as_main_photo' photo_id Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'sort_gallery_list' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - 'sort_photo_list' Blind SQLi S
HTTP WordPress Users Ultra Plugin 1.5.50 - Unrestricted File Upload S
HTTP WordPress Users Ultra Plugin Persistent XSS Vulnerbility S
HTTP WP-Client Stored XSS Vulnerability S
HTTP ZTE ZXHN H108N R1A Routers - 'errorpage' XSS S
HTTP ZTE ZXHN H108N R1A Routers - Password Vulnerability (Percent Encoded) S
HTTP ZTE ZXHN H108N R1A Routers - Password Vulnerability S
HTTP ZTE ZXHN H108N R1A Routers - Path Traversal S
Malware CryptoWall 4 Communication to C & C Server S
Malware CryptoWall 4 Communication to C & C Server_1 S
Malware CryptoWall 4 Communication to C & C Server_2 S
Malware CryptoWall 4 Communication to C & C Server_3 S
Malware CryptoWall 4 Communication to C & C Server_4 S
Malware CryptoWall 4 Communication to C & C Server_5 S
Malware CryptoWall 4 Communication to C & C Server_6 S
Malware CryptoWall 4 Communication to C & C Server_7 S
Malware CryptoWall 4 Communication to C & C Server_8 S
ManageEngine Service Desk File Upload Remote Code Execution Vulnerability S
Telegram Remote Denial Of Service Vulnerability S
WinRar Expired Notification OLE Remote Command Execution Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.