Search

Traffic File Update - August 2015

This Traffic IQ Professional update for August 2015 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for August 2015

169 Application Exploits

HTTP 15 TOTOLINK Router Models - Configuration Disclosure (From Server) S
HTTP 15 TOTOLINK Router Models - Configuration Disclosure (To Server) S
HTTP 15 TOTOLINK Router Models - Default Firewall Rules (From Server) S
HTTP 15 TOTOLINK Router Models - Default Firewall Rules (To Server) S
HTTP 15 TOTOLINK Router Models - DoS (From Server) S
HTTP 15 TOTOLINK Router Models - DoS (To Server) S
HTTP 15 TOTOLINK Router Models - Information Disclosure (From Server) (Mixed Case) S
HTTP 15 TOTOLINK Router Models - Information Disclosure (From Server) S
HTTP 15 TOTOLINK Router Models - Information Disclosure (To Server) (Mixed Case) S
HTTP 15 TOTOLINK Router Models - Information Disclosure (To Server) S
HTTP 15 TOTOLINK Router Models - Open Firewall (From Server) S
HTTP 15 TOTOLINK Router Models - Open Firewall (To Server) S
HTTP 15 TOTOLINK Router Models - Process Disclosure (From Server) S
HTTP 15 TOTOLINK Router Models - Process Disclosure (To Server) S
HTTP 15 TOTOLINK Router Models - Reboot Device (From Server) S
HTTP 15 TOTOLINK Router Models - Reboot Device (To Server) S
HTTP 8 TOTOLINK Router Models - Close Remote Management Interface S
HTTP 8 TOTOLINK Router Models - Open Remote Management Interface S
HTTP 8 TOTOLINK Router Models - RCE S
HTTP Adobe Connect XSS Vulnerability S
HTTP Anima Gallery Multiple 'lang' parameter Local File Include (Percent Encoded) S
HTTP Anima Gallery Multiple 'lang' parameter Local File Include S
HTTP Anima Gallery Multiple 'theme' parameter Local File Include (Percent Encoded) S
HTTP Anima Gallery Multiple 'theme' parameter Local File Include S
HTTP Arab Portal 3 - SQL Injection Vulnerability (Percent Encoded) S
HTTP Arab Portal 3 - SQL Injection Vulnerability S
HTTP Barracuda Message Archiver 650 - Persistent XSS Vulnerability (To Server) S
HTTP Bilboplanet 2.0 - Multiple XSS Vulnerabilities (To Server) S
HTTP Bilboplanet 2.0 - Multiple XSS Vulnerabilities_1 (To Server) S
HTTP Bilboplanet 2.0 - Multiple XSS Vulnerabilities_2 (To Server) S
HTTP BlackCat CMS CVE 2015 5079 Directory Traversal Vulnerability S
HTTP Boat Browser 8.0 and 8.0.1 - Remote Code Execution Vulnerability S
HTTP CMS Made Simple 1.11.10 - Multiple XSS Vulnerabilities (To Server) S
HTTP CMS Made Simple 1.11.10 - Multiple XSS Vulnerabilities_1 (To Server) S
HTTP D-Link Cookie Command Execution S
HTTP DreamBox DM500s 'mode' Parameter Cross Site Scripting Vulnerability S
HTTP Eliacom Enhanced SQL Portal 'iframe.php' Cross Site Scripting Vulnerability S
HTTP File Roller v3.4.1 - DoS PoC S
HTTP FreiChat 9.6 - SQL Injection (Percent Encoded) S
HTTP FreiChat 9.6 - SQL Injection S
HTTP Full Player 8.2.1 - Memory Corruption PoC (Mixed Case URL) S
HTTP Full Player 8.2.1 - Memory Corruption PoC S
HTTP Gitlist Remote Code Execution S
HTTP Grandstream GXV3275 1.0.3.30 - Command Execution S
HTTP Hawkeye-G v3.0.1.4912 Add Account CSRF (From Server) S
HTTP Hawkeye-G v3.0.1.4912 Add Account CSRF (To Server) S
HTTP Hawkeye-G v3.0.1.4912 Shutdown DNS Inject CSRF (From Server) S
HTTP Hawkeye-G v3.0.1.4912 Shutdown DNS Inject CSRF (To Server) S
HTTP Hawkeye-G v3.0.1.4912 Shutdown IP Redirect CSRF (From Server) S
HTTP Hawkeye-G v3.0.1.4912 Shutdown IP Redirect CSRF (To Server) S
HTTP Hawkeye-G v3.0.1.4912 Shutdown URL Matching CSRF (From Server) S
HTTP Hawkeye-G v3.0.1.4912 Shutdown URL Matching CSRF (To Server) S
HTTP Image Transfer IOS - Remote Crash PoC (Percent Encoded) S
HTTP Image Transfer IOS - Remote Crash PoC S
HTTP Joomla DOCman Component - LFD S
HTTP Joomla Helpdesk Pro - 'email' parameter SQL Injection S
HTTP Joomla Helpdesk Pro - 'filter_order' parameter SQL Injection S
HTTP Joomla Helpdesk Pro - 'ticket_code' parameter SQL Injection S
HTTP Joomla Helpdesk Pro - Path Traversal (Percent Encoded) S
HTTP Joomla Helpdesk Pro - Path Traversal S
HTTP Joomla Helpdesk Pro - Unauthenticated .ini Access S
HTTP Joomla Helpdesk Pro - Unauthenticated Ticket Access S
HTTP Kaseya Virtual System Administrator - 'LocalProxy.ashx' Open Redirect S
HTTP Kaseya Virtual System Administrator - 'supportLoad.asp' Open Redirect S
HTTP Kaseya Virtual System Administrator - Arbitary File Download S
HTTP Koha 3.20.1 - SQL Injection Vulnerability (Percent Encoded) S
HTTP Koha 3.20.1 - SQL Injection Vulnerability S
HTTP Lively Cart SQL Injection Vulnerability (Percent Encoded) S
HTTP Lively Cart SQL Injection Vulnerability S
HTTP Mailbird Cross Site Scripting Vulnerability S
HTTP ManageEngine Password Manager Pro 'SQLAdvancedALSearchResult.cc' SQL Injection S
HTTP McAfee SiteAdvisor 3.7.2 (firefox) Use After Free PoC S
HTTP MyBB Forums 1.8.2 - Stored XSS Vulnerability (To Server) S
HTTP MyBB Forums 1.8.2 - Stored XSS Vulnerability S
HTTP Netsweeper 2.6.29.8 - 'dpid' parameter SQL Injection S
HTTP Netsweeper 2.6.29.8 - 'login' parameter SQL Injection (Mixed Case) S
HTTP Netsweeper 2.6.29.8 - 'login' parameter SQL Injection S
HTTP Netsweeper 3.0.6 - Authentication Bypass (Percent Encoded) S
HTTP Netsweeper 3.0.6 - Authentication Bypass S
HTTP Netsweeper 4.0.4 - SQL Injection (Percent Encoded) S
HTTP Netsweeper 4.0.4 - SQL Injection S
HTTP Netsweeper 4.0.8 - 'login' parameter SQL Injection S
HTTP Netsweeper 4.0.8 - 'password' parameter SQL Injection S
HTTP Netsweeper 4.0.8 - Quarantine Auth Bypass (Percent Encoded) S
HTTP Netsweeper 4.0.8 - Quarantine Auth Bypass S
HTTP Netsweeper 4.0.8 - Restart Server Auth Bypass S
HTTP Netsweeper 4.0.8 - Stop Filter Auth Bypass S
HTTP Novell ZENworks Configuration Management 'UploadServlet' RCE Vulnerability S
HTTP osCMax Multiple XSS Vulnerabilities (From Server) S
HTTP osCMax Multiple XSS Vulnerabilities (To Server) S
HTTP osCMax Multiple XSS Vulnerabilities S
HTTP osCMax Multiple XSS Vulnerabilities_1 (From Server) S
HTTP osCMax Multiple XSS Vulnerabilities_1 (To Server) S
HTTP osCMax Multiple XSS Vulnerabilities_1 S
HTTP osCMax Multiple XSS Vulnerabilities_10 S
HTTP osCMax Multiple XSS Vulnerabilities_2 S
HTTP osCMax Multiple XSS Vulnerabilities_3 S
HTTP osCMax Multiple XSS Vulnerabilities_4 S
HTTP osCMax Multiple XSS Vulnerabilities_5 S
HTTP osCMax Multiple XSS Vulnerabilities_6 S
HTTP osCMax Multiple XSS Vulnerabilities_7 S
HTTP osCMax Multiple XSS Vulnerabilities_8 S
HTTP osCMax Multiple XSS Vulnerabilities_9 S
HTTP Paintshop Pro X7 GIF Conversion Heap Memory Corruption (LZWMinimumCodeSize) S
HTTP Photoshop CC2014 and Bridge CC 2014 Gif Parsing Memory Corruption S
HTTP phpFileManager 0.9.8 - RCE Vulnerability (Percent Encoded) S
HTTP phpFileManager 0.9.8 - RCE Vulnerability S
HTTP phpSQLiteCMS - Add Arbritary User CSRF (From Server) S
HTTP phpSQLiteCMS - Add Arbritary User CSRF (To Server) S
HTTP phpSQLiteCMS - Cross Site Scripting (Percent Encoded) S
HTTP phpSQLiteCMS - Cross Site Scripting S
HTTP phpSQLiteCMS - Delete Server Files S
HTTP phpSQLiteCMS - Privilege Escalation S
HTTP phpVibe - Aribtrary File Disclosure S
HTTP Pimcore CMS 'filter' parameter SQL Injection Vulnerability S
HTTP PivotX 'fileexplore' Cross Site Scripting (Percent Encoded) S
HTTP PivotX 'fileexplore' Cross Site Scripting S
HTTP PivotX 'page' Cross Site Scripting (Percent Encoded) S
HTTP PivotX 'page' Cross Site Scripting S
HTTP PivotX 'templates' Cross Site Scripting S
HTTP SolarWinds Storage Manager Remote Code Execution Vulnerability S
HTTP Symphony 'sort' Parameter Cross Site Scripting Vulnerability S
HTTP Synology DiskStation Manager 'entry.cgi' Cross Site Scripting Vulnerability S
HTTP Technicolor TC7200 - Cross Site Scripting Vulnerability (To Server) S
HTTP Template CMS XSS Vulnerabilities (To Server) S
HTTP Template CMS XSS Vulnerabilities (From Server) S
HTTP Trend Micro Deep Discovery Inspector CVE 2015 2872 XSS (Percent Encoded) S
HTTP Trend Micro Deep Discovery Inspector CVE 2015 2872 XSS S
HTTP Watchguard XCS Command Injection Vulnerability S
HTTP Watchguard XCS SQL Injection Vulnerability S
HTTP Websense Content Gateway 'handle_debug_network' Stack Buffer Overflow S
HTTP WordPress Count Per Day 3.4 SQL Injection (From Server) S
HTTP WordPress Count Per Day 3.4 SQL Injection (To Server) S
HTTP WordPress CP Image Store Slideshow Plugin Arbitrary File Download (Percent Encoded) S
HTTP WordPress CP Image Store Slideshow Plugin Arbitrary File Download S
HTTP WordPress CP Multi View Event Calendar Plugin SQL Injection_1 (Percent Encoded) S
HTTP WordPress CP Multi View Event Calendar Plugin SQL Injection_1 S
HTTP WordPress Easy2Map Photos Plugin SQL Injection (Percent Encoded) S
HTTP WordPress Easy2Map Photos Plugin SQL Injection S
HTTP WordPress Eventbrite Tickets Plugin for The Events Calendar XSS Vulnerability S
HTTP WordPress Floating Social Bar Plugin Cross Site Scripting Vulnerability S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_1 (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_2 (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_3 (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_4 (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_5 (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_6 (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_7 (To Server) S
HTTP WordPress MiwoFTP Plugin XSS Vulnerabilities_8 (To Server) S
HTTP WordPress Paid Memberships Pro 1.8.4.2 XSS Vulnerability S
HTTP WordPress Paid Memberships Pro 1.8.4.2 XSS Vulnerability_1 S
HTTP WordPress Paid Memberships Pro 1.8.4.2 XSS Vulnerability_2 S
HTTP WordPress Paid Memberships Pro 1.8.4.2 XSS Vulnerability_3 S
HTTP WordPress qTranslate Plugin 'options general.php' XSS S
HTTP WordPress Revslider Plugin Cross Site Scripting Vulnerability S
INFOMARK IMW-C920W miniupnpd 1.0 - Denial of Service S
ISC BIND9 TKEY Remote DoS Vulnerability S
NTPD MON_GETLIST Query Amplification Denial of Service S
VNC Keyboard Remote Code Execution Vulnerability S
Western Digital Arkeia Remote Code Execution Vulnerability S
WordPress CP Contact Form Paypal Plugin SQL Injection Vulnerability (From Server) S
WordPress CP Contact Form Paypal Plugin SQL Injection Vulnerability (To Server) S
WordPress CP Contact Form Paypal Plugin XSS Vulnerability (From Server) S
WordPress CP Contact Form Paypal Plugin XSS Vulnerability (To Server) S
WordPress CP Contact Form Paypal Plugin XSS Vulnerability_1 (From Server) S
WordPress CP Contact Form Paypal Plugin XSS Vulnerability_1 (To Server) S
WordPress CP Contact Form Paypal Plugin XSS Vulnerability_2 (From Server) S
WordPress CP Contact Form Paypal Plugin XSS Vulnerability_2 (To Server) S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.