Search

Traffic File Update - May 2015

This Traffic IQ Professional update for May 2015 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for May 2015

243 Application Exploits

Fortinet FortiAuthenticator Appliance Multiple Security Vulnerabilities S
HTTP Balero CMS Blind SQL Injection Vulnerability (From Server) S
HTTP Balero CMS Blind SQL Injection Vulnerability (To Server) S
HTTP Balero CMS HTML Script Injection Vulnerability (From Server) S
HTTP Balero CMS HTML Script Injection Vulnerability (To Server) S
HTTP Balero CMS HTML Script Injection Vulnerability_1 (From Server) S
HTTP Barracuda Firmware Reporting Post Auth Remote Root Vulnerability S
HTTP Citrix NetScaler VPX 'Help Pages' Cross Site Scripting Vulnerability S
HTTP Citrix NITRO SDK Command Injection Vulnerability (From Server) S
HTTP Citrix NITRO SDK Command Injection Vulnerability (To Server) S
HTTP Citrix NITRO SDK Command Injection Vulnerability_1 (From Server) S
HTTP Citrix NITRO SDK Command Injection Vulnerability_1 (To Server) S
HTTP Citrix NITRO SDK xen_hotfix Cross Site Scripting Vulnerability (From Server) S
HTTP Citrix NITRO SDK xen_hotfix Cross Site Scripting Vulnerability (To Server) S
HTTP Codoforum 2.5.1 - Arbitrary File Download (Mixed Case URL) S
HTTP Codoforum 2.5.1 - Arbitrary File Download S
HTTP Codoforum 2.5.1 - Arbitrary File Download_1 (Percent Encoded URL) S
HTTP Codoforum 2.5.1 - Arbitrary File Download_1 S
HTTP CS-Cart 4.2.4 - CSRF (Mixed Case URL) S
HTTP CS-Cart 4.2.4 - CSRF S
HTTP CS-Cart 4.2.4 - CSRF_1 (Reverse Forward Slash in URL) S
HTTP CS-Cart 4.2.4 - CSRF_1 S
HTTP Elastix 2.x - Blind SQL Injection Vulnerability (Reverse Forward Slash in URL) S
HTTP Elastix 2.x - Blind SQL Injection Vulnerability S
HTTP EMC M and R (Watch4net) - Directory Traversal (Percent Encoded URL) S
HTTP EMC M and R (Watch4net) - Directory Traversal S
HTTP Fiyo CMS 2.0.1.8 - Access Control Bypass (Reverse Forward Slash in URL) S
HTTP Fiyo CMS 2.0.1.8 - Access Control Bypass S
HTTP Fiyo CMS 2.0.1.8 - Access Control Bypass_1 (Mixed Case URL) S
HTTP Fiyo CMS 2.0.1.8 - Access Control Bypass_1 S
HTTP Fiyo CMS 2.0.1.8 - Authentication Bypass Vulnerability (Mixed Case URL) S
HTTP Fiyo CMS 2.0.1.8 - Authentication Bypass Vulnerability S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting (Reverse Forward Slash in URL) S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_1 (Mixed Case URL) S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_1 S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_2 (Percent Encoded URL) S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_2 S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_3 (Double Percent Encoded URL) S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_3 S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_4 (Mixed Case URL) S
HTTP Fiyo CMS 2.0.1.8 - Cross Site Scripting_4 S
HTTP Fiyo CMS 2.0.1.8 - Directory Traversal (Double Percent Encoded URL) S
HTTP Fiyo CMS 2.0.1.8 - Directory Traversal S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection (Mixed Case URL) S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_1 (Reverse Forward Slash in URL) S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_1 S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_2 (Percent Encoded URL) S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_2 S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_3 (Mixed Case URL) S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_3 S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_4 (Mixed Case Body Text) S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_4 S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_5 (Reverse Forward Slash in URL) S
HTTP Fiyo CMS 2.0.1.8 - SQL Injection_5 S
HTTP GeniXCMS 0.0.1 - CSRF (Mixed Case URL) S
HTTP GeniXCMS 0.0.1 - CSRF S
HTTP GeniXCMS 0.0.1 - CSRF_1 (Mixed Case Body Text) S
HTTP GeniXCMS 0.0.1 - CSRF_1 S
HTTP GeniXCMS 0.0.1 - SQL Injection Vulnerability (Mixed Case URL) S
HTTP GeniXCMS 0.0.1 - SQL Injection Vulnerability S
HTTP GeniXCMS 0.0.1 - SQL Injection Vulnerability_1 (Mixed Case Body Text) S
HTTP GeniXCMS 0.0.1 - SQL Injection Vulnerability_1 S
HTTP GeniXCMS 0.0.1 - XSS (Mixed Case URL) S
HTTP GeniXCMS 0.0.1 - XSS S
HTTP GeniXCMS 0.0.1 - XSS_1 (Percent Encoded URL) S
HTTP GeniXCMS 0.0.1 - XSS_1 S
HTTP GeniXCMS 0.0.1 - XSS_2 (Double Percent Encoded URL) S
HTTP GeniXCMS 0.0.1 - XSS_2 S
HTTP GuppY admin.php Privilege Escalation CSRF Vulnerability S
HTTP Guppy CMS Authentication Bypass Vulnerability (From Server) S
HTTP Guppy CMS Authentication Bypass Vulnerability (To Server) S
HTTP GuppY CMS CSRF Vulnerability (From Server) S
HTTP GuppY CMS CSRF Vulnerability (To Server) S
HTTP GuppY user.php Cookie Handling Remote Authentication Bypass Vulnerability S
HTTP GuppY user.php Cookie Handling Remote Authentication Bypass Vulnerability_1 S
HTTP i-FTP Schedule Buffer Overflow Vulnerability S
HTTP Joomla ECommerce-WD Plugin 1.2.5 - SQL Injection (Mixed Case Body Text) S
HTTP Joomla ECommerce-WD Plugin 1.2.5 - SQL Injection S
HTTP Joomla ECommerce-WD Plugin 1.2.5 - SQL Injection_1 (Percent Encoded URL) S
HTTP Joomla ECommerce-WD Plugin 1.2.5 - SQL Injection_1 S
HTTP Joomla ECommerce-WD Plugin 1.2.5 - SQL Injection_2 (Mixed Case URL) S
HTTP Joomla ECommerce-WD Plugin 1.2.5 - SQL Injection_2 S
HTTP Landsknecht Adminsystems CMS id Parameter XSS Vulnerability S
HTTP Landsknecht Adminsystems CMS page Parameter XSS Vulnerability S
HTTP LG LE6016D DVR Direct Request Unauthenticated File Disclosure Vulnerability S
HTTP Magmi Plugin for Magento CE magmi.php profile Parameter XSS Vulnerability S
HTTP Magmi Plugin for Magento CE magmi_import_run.php URI XSS Vulnerability S
HTTP MantisBT install.php 'install' Parameter XSS Vulnerability S
HTTP MantisBT install.php admin_password Parameter XSS Vulnerability S
HTTP MantisBT install.php admin_username Parameter XSS Vulnerability S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS (Mixed Case Body Text) S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS_1 (Mixed Case URL) S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS_1 S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS_2 (Mixed Case Body Text) S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS_2 S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS_3 (Mixed Case URL) S
HTTP Moodle 2.5.9 2.6.8 2.7.5 2.8.3 - Block Title Handler XSS_3 S
HTTP my little forum 'index.php' edit_category Parameter SQL Injection Vulnerability S
HTTP my little forum 'index.php' letter Parameter SQL Injection Vulnerability S
HTTP my little forum index.php back Parameter XSS Vulnerability S
HTTP NetIQ Access Manager CVE-2014-5214 XML External Entity Injection Vulnerability S
HTTP Palringo Stack Buffer Overflow Vulnerability S
HTTP Pandora FMS SQL Injection Vulnerability (Double Percent Encoded) S
HTTP Pandora FMS SQL Injection Vulnerability S
HTTP Pandora FMS SQL Injection Vulnerability_1 (Double Percent Encoded) S
HTTP Pandora FMS SQL Injection Vulnerability_1 S
HTTP Pandora FMS SQL Injection Vulnerability_2 (Double Percent Encoded) S
HTTP Pandora FMS SQL Injection Vulnerability_2 S
HTTP Pandora FMS SQL Injection Vulnerability_3 S
HTTP Pandora FMS SQL Injection Vulnerability_4 S
HTTP Pandora FMS SQL Injection Vulnerability_5 S
HTTP Pentaho User Console XML Injection Vulnerability S
HTTP pfSense 2.2 - CSRF (Reverse Forward Slash in URL) S
HTTP pfSense 2.2 - CSRF S
HTTP pfSense 2.2 - XSS (Percent Encoded URL) S
HTTP pfSense 2.2 - XSS S
HTTP pfSense 2.2 - XSS_1 (Mixed Case URL) S
HTTP pfSense 2.2 - XSS_1 S
HTTP pfSense 2.2 - XSS_10 (Mixed Case URL) S
HTTP pfSense 2.2 - XSS_10 S
HTTP pfSense 2.2 - XSS_11 (Percent Encoded URL) S
HTTP pfSense 2.2 - XSS_11 S
HTTP pfSense 2.2 - XSS_12 (Reverse Forward Slash in URL) S
HTTP pfSense 2.2 - XSS_12 S
HTTP pfSense 2.2 - XSS_2 (Reverse Forward Slash in URL) S
HTTP pfSense 2.2 - XSS_2 S
HTTP pfSense 2.2 - XSS_3 (Mixed Case URL) S
HTTP pfSense 2.2 - XSS_3 S
HTTP pfSense 2.2 - XSS_4 (Percent Encoded URL) S
HTTP pfSense 2.2 - XSS_4 S
HTTP pfSense 2.2 - XSS_5 (Reverse Forward Slash in URL) S
HTTP pfSense 2.2 - XSS_5 S
HTTP pfSense 2.2 - XSS_6 (Mixed Case URL) S
HTTP pfSense 2.2 - XSS_6 S
HTTP pfSense 2.2 - XSS_7 (Percent Encoded URL) S
HTTP pfSense 2.2 - XSS_7 S
HTTP pfSense 2.2 - XSS_8 (Reverse Forward Slash in URL) S
HTTP pfSense 2.2 - XSS_8 S
HTTP pfSense 2.2 - XSS_9 (Double Percent Encoded URL) S
HTTP pfSense 2.2 - XSS_9 S
HTTP PHP Address Book edit.php SQL injection Vulnerability_1 S
HTTP PHP Address Book group.php to_group Parameter SQL Injection Vulnerability S
HTTP PHP Address Book group.php XSS Vulnerability S
HTTP PHP Address Book index.php group Parameter XSS Vulnerability S
HTTP PHP Address Book index.php XSS Vulnerability S
HTTP PHP Address Book preferences.php from Parameter XSS Vulnerability S
HTTP PHP Address Book preferences.php XSS Vulnerability S
HTTP PHP Betoffice (Betster) 1.0.4 - Auth Bypass And SQL Injection (Mixed Case URL) S
HTTP PHP Betoffice (Betster) 1.0.4 - Auth Bypass And SQL Injection S
HTTP PHP Betoffice (Betster) 1.0.4 - Auth Bypass And SQL Injection_1 (Percent Encoded URL) S
HTTP PHP Betoffice (Betster) 1.0.4 - Auth Bypass And SQL Injection_1 S
HTTP phpBugTracker bug.php bug_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker database.php database_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker group.php group_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker group.php group_id Parameter SQL Injection Vulnerability_1 S
HTTP phpBugTracker group.php use_js Parameter Reflected XSS Vulnerability S
HTTP phpBugTracker os.php os_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker priority.php priority_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker project.php id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker resolution.php resolution_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker severity.php severity_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker site.php site_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker status.php status_id Parameter SQL Injection Vulnerability S
HTTP phpBugTracker user.php use_js Parameter Reflected XSS Vulnerability S
HTTP phpThumb() phpThumb.demo.random.php dir XSS Vulnerability S
HTTP phpThumb() phpThumb.demo.showpic.php title XSS Vulnerability S
HTTP Piwigo 'page' Reflected XSS Vulnerability S
HTTP Piwigo 'page' SQL Injection Vulnerability S
HTTP Piwigo 2.7.2 admin.php SQL Injection Vulnerability S
HTTP Piwigo 2.7.3 admin.php SQL Injection Vulnerability S
HTTP Piwigo admin.php page Parameter CVE-2015-2034 XSS Vulnerability S
HTTP ProjectSend r561 - SQL Injection Vulnerability (Mixed Case URL) S
HTTP ProjectSend r561 - SQL Injection Vulnerability S
HTTP Samsung iPOLiS 1.12.2 - iPOLiS XnsSdkDeviceIpInstaller RCE (Mixed Case URL) S
HTTP Samsung iPOLiS 1.12.2 - iPOLiS XnsSdkDeviceIpInstaller RCE S
HTTP Simple Ads Manager Plugin for WordPress File Upload Vulnerability S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_1 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_2 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_3 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_4 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_5 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_6 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_7 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_8 S
HTTP Simple Ads Manager plugin for WordPress SQL injection Vulnerability_9 S
HTTP SoftBB 0.1.3 SQL Injection (Percent Encoded URL) S
HTTP SoftBB 0.1.3 SQL Injection S
HTTP StaMPi Local File Inclusion Vulnerability S
HTTP TP-LINK Local File Disclosure Vulnerability S
HTTP TP-LINK Local File Disclosure Vulnerability_1 S
HTTP TP-LINK Local File Disclosure Vulnerability_2 S
HTTP TP-LINK Local File Disclosure Vulnerability_3 S
HTTP u5CMS cookie.php Multiple Parameter Reflected XSS Vulnerability S
HTTP u5CMS copy.php name Parameter Reflected XSS Vulnerability S
HTTP u5CMS delete.php name Parameter Reflected XSS Vulnerability S
HTTP u5CMS deletefile.php Multiple Parameter Reflected XSS Vulnerabilities S
HTTP u5CMS deletefile.php Multiple Parameter Reflected XSS Vulnerabilities_1 S
HTTP u5CMS deletefile.php Multiple Parameter Reflected XSS Vulnerabilities_2 S
HTTP u5CMS deletefile.php Multiple Parameter Reflected XSS Vulnerabilities_3 S
HTTP u5CMS editor.php c Parameter SQL Injection Vulnerability S
HTTP u5CMS index.php Multiple Parameter Reflected XSS Vulnerability S
HTTP u5CMS localize.php name Parameter SQL Injection Vulnerability S
HTTP u5CMS new2.php name Parameter Stored XSS Vulnerability S
HTTP u5CMS notdone.php n Parameter Reflected XSS Vulnerability S
HTTP u5CMS rename2.php newname Parameter Reflected XSS Vulnerability S
HTTP u5CMS savepage.php page Parameter Stored XSS Vulnerability S
HTTP u5CMS thumb.php f Parameter Path Traversal Vulnerability S
HTTP u5CMS thumb.php f Parameter Path Traversal Vulnerability_1 S
HTTP Visualware MyConnection Server 8.2b bt parameter XSS Vulnerability S
HTTP Visualware MyConnection Server 8.2b et parameter XSS Vulnerability S
HTTP Visualware MyConnection Server 8.2b variable parameter XSS Vulnerability S
HTTP Webfolio CMS Admin User Creation CSRF Vulnerability S
HTTP Webfolio CMS Modify Web Page CSRF Vulnerability S
HTTP WeBid Unrestricted File Upload Vulnerability S
HTTP Websense Appliance Manager Command Injection Vulnerability (Mixed Case URL) S
HTTP Websense Appliance Manager Command Injection Vulnerability S
HTTP WoltLab Community Gallery - Stored XSS (Mixed Case Body Text) S
HTTP WoltLab Community Gallery - Stored XSS S
HTTP WordPress SEO by Yoast 1.7.3.3 - Blind SQL Injection (Double Percent Encoded URL) S
HTTP WordPress SEO by Yoast 1.7.3.3 - Blind SQL Injection S
HTTP Wordpress Theme Photocrati 4.x.x - SQL Injection (Percent Encoded URL) S
HTTP Wordpress Theme Photocrati 4.x.x - SQL Injection S
HTTP WordPress WPML - CSRF (Mixed Case URL) S
HTTP WordPress WPML - CSRF S
HTTP WordPress WPML - CSRF_1 (Mixed Case URL Body Text) S
HTTP WordPress WPML - CSRF_1 S
HTTP WordPress WPML - XSS (Reverse Forward Slash in URL) S
HTTP WordPress WPML - XSS S
Hybris Commerce Software Suite 5.x File Disclosure Traversal S
Mango Automation 'data_point_details.shtm' Multiple XSS Vulnerabilities S
Microsoft Office Word 2007 RTF Object Confusion (ASLR and DEP Bypass) Vulnerability S
OpenEMR 'validateUser.php' SQL Injection Vulnerability S
OSClass Directory Traversal and Arbitrary File Upload Vulnerabilities S
osTicket 'tickets.php' Cross Site Scripting Vulnerability S
pGB 'kommentar.php' SQL Injection Vulnerability S
PhpBridges 'members.php' SQL Injection Vulnerability S
Pragyan CMS CVE-2015-1471 SQL Injection Vulnerability S
PrestaShop 'blocklayered-ajax.php' XSS S
VDG Security Sense Multiple Security Vulnerabilities S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.