Search

Traffic File Update - August 2016

This Traffic IQ Professional update for August 2016 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for August 2016

131 Application Exploits

Achat 0.150 beta7 - Buffer Overflow S
Adobe Acrobat Reader DC Invalid Font Memory Corruption Vulnerability_1 S
Adobe Acrobat Reader DC Invalid Font Memory Corruption Vulnerability_2 S
Adobe Acrobat Reader DC Invalid Font Memory Corruption Vulnerability_3 S
Adobe Acrobat Reader DC Invalid Font Memory Corruption Vulnerability_4 S
Adobe Acrobat Reader DC Invalid Font Memory Corruption Vulnerability_5 S
Adobe Acrobat Reader DC Invalid Font Memory Corruption Vulnerability_6 S
Adobe Flash addProperty Use-After-Free CVE-2016-4108 Vulnerability_2 S
Adobe Flash ATF Image Packing CVE-2016-4138 Overflow Vulnerability S
Adobe Flash ATF Processing Overflow CVE-2016-4135 Vulnerability S
HTTP Advantech WebAccess Dashboard Viewer Arbitrary File Upload S
HTTP Airia - Webshell Upload Exploit S
HTTP Airties Air5650TT - Remote Stack Overflow S
HTTP Apache Continuum Arbitrary Command Execution S
HTTP Beauty Parlour & SPA Saloon Management System - Blind SQL Injection S
HTTP Clinic Management System - Blind SQL Injection S
HTTP CMS Made Simple Cache Poisoning S
HTTP Dell SonicWall Scrutinizer = 11.0.1 - setUserSkindeleteTab SQL Injection S
HTTP DotNetNuke 07.04.00 - Administration Authentication Bypass S
HTTP FinderView - 'callback' Reflected XSS S
HTTP FinderView - Path Traversal (view directory) S
HTTP Gemalto Sentinel License Manager 18.0.1.55505 - Directory Traversal 'GET' S
HTTP Gemalto Sentinel License Manager 18.0.1.55505 - Directory Traversal 'POST' S
HTTP Gemalto Sentinel License Manager 18.0.1.55505 - Unauthenticated File Write S
HTTP Getsimple CMS 3.3.10 - Arbitrary File Upload S
HTTP Hyperoptic (Tilgin) Router HG23xx - 'name' XSS S
HTTP Hyperoptic (Tilgin) Router HG23xx - Add Storage User CSRF (From Server) S
HTTP Hyperoptic (Tilgin) Router HG23xx - Add Storage User CSRF (To Server) S
HTTP Hyperoptic (Tilgin) Router HG23xx - Change Admin Password CSRF (From Server) S
HTTP Hyperoptic (Tilgin) Router HG23xx - Change Admin Password CSRF (To Server) S
HTTP jbFileManager - 'Add File-Dir' Directory Traversal S
HTTP jbFileManager - 'Delete File-Dir' Directory Traversal S
HTTP jbFileManager - 'View Dir' Directory Traversal S
HTTP Joomla BT Media (com_bt_media) Component - SQL Injection S
HTTP Joomla En Masse (com_enmasse) Component 5.1 - 6.4 - SQL Injection S
HTTP Joomla PayPlans (com_payplans) Extension 3.3.6 - SQL Injection S
HTTP Joomla Publisher Pro (com_publisher) Component - SQL Injection S
HTTP Kagao 3.0 - 'id2' SQL Injection S
HTTP Kagao 3.0 - 'suche' Cross Site Scripting S
HTTP MOBOTIX Video Security Cameras CSRF Vulnerability (From Server) S
HTTP MOBOTIX Video Security Cameras CSRF Vulnerability (To Server) S
HTTP MOBOTIX Video Security Cameras CSRF Vulnerability_1 (From Server) S
HTTP MOBOTIX Video Security Cameras CSRF Vulnerability_1 (To Server) S
HTTP MyLittleForum 2.3.5 - PHP Command Injection S
HTTP Nagios XI 5.2.7 - 'end' Command Injection S
HTTP Nagios XI 5.2.7 - 'proxyurl' CSRF S
HTTP Nagios XI 5.2.7 - 'service' SQL Injection S
HTTP Nagios XI 5.2.7 - 'start' Command Injection S
HTTP Nagios XI 5.2.7 - 'title' Command Injection S
HTTP Nagios XI 5.2.7 - 'url' CSRF S
HTTP Nagios XI 5.2.7 - Admin Account Hijacking S
HTTP Nagios XI 5.2.7 - Privilege Escalation S
HTTP Notilus Travel Solution Software 2012 R3 - SQL Injection S
HTTP Novell Service Desk 7.1.0 'entityName' HQL Injection S
HTTP Novell Service Desk 7.1.0 'tf_orgUnitName' Cross Site Scripting S
HTTP Oracle Application Testing Suite (ATS) - Arbitrary File Upload S
HTTP Oracle Application Testing Suite Authentication Bypass Vulnerability S
HTTP Oracle BeeHive 2 voice-servlet prepareAudioToPlay() Arbitrary File Upload S
HTTP Oracle BeeHive 2 voice-servlet processEvaluation() S
HTTP phpATM CSRF Vulnerability (From Server) S
HTTP phpATM CSRF Vulnerability (To Server) S
HTTP phpATM CSRF Vulnerability_1 (From Server) S
HTTP phpATM CSRF Vulnerability_1 (To Server) S
HTTP phpATM CSRF Vulnerability_2 (From Server) S
HTTP phpATM CSRF Vulnerability_2 (To Server) S
HTTP phpATM index.php Path Disclosure Vulnerability S
HTTP rConfig Local File Inclusion Vulnerability S
HTTP SAP NetWeaver AS JAVA Cross Site Scripting Vulnerability S
HTTP SAP NetWeaver AS JAVA Directory Traversal Vulnerability S
HTTP SAP NetWeaver AS JAVA SQL Injection Vulnerability S
HTTP SAP xMII Directory Traversal Vulnerability S
HTTP SlimCMS CSRF Vulnerability (From Server) S
HTTP SlimCMS CSRF Vulnerability (To Server) S
HTTP sNews CMS Arbitrary File Deletion Vulnerability S
HTTP sNews CMS Cross Site Scripting Vulnerability (From Server) S
HTTP sNews CMS Cross Site Scripting Vulnerability (To Server) S
HTTP sNews CMS CSRF Vulnerability (From Server) S
HTTP sNews CMS CSRF Vulnerability (To Server) S
HTTP sNews CMS RCE Vulnerability (From Server) S
HTTP sNews CMS RCE Vulnerability (To Server) S
HTTP Sophos Cyberoam NG Series Cross Site Scripting Vulnerability S
HTTP Sophos Cyberoam NG Series Cross Site Scripting Vulnerability_1 S
HTTP Sophos Cyberoam NG Series Cross Site Scripting Vulnerability_2 S
HTTP Sophos Cyberoam NG Series Cross Site Scripting Vulnerability_3 S
HTTP Streamo Online Radio And TV Streaming CMS SQL Injection Vulnerability S
HTTP Streamo Online Radio And TV Streaming CMS SQL Injection Vulnerability_1 S
HTTP Streamo Online Radio And TV Streaming CMS SQL Injection Vulnerability_2 S
HTTP Symantec Endpoint Protection Manager CSRF Vulnerability (From Server) S
HTTP Symantec Endpoint Protection Manager CSRF Vulnerability (To Server) S
HTTP Symantec Endpoint Protection Manager Open Redirect Vulnerability S
HTTP Symantec Endpoint Protection Manager XSS Vulnerability S
HTTP w2wiki - 'newText' Cross Site Scripting S
HTTP w2wiki - edit page Cross Site Scripting S
HTTP w2wiki - search page Cross Site Scripting S
HTTP WebCalendar CSRF Vulnerability (From Server) S
HTTP WebCalendar CSRF Vulnerability (To Server) S
HTTP WebCalendar CSRF Vulnerability_1 (From Server) S
HTTP WebCalendar CSRF Vulnerability_1 (To Server) S
HTTP WordPress Activity Log Plugin XSS Vulnerability (From Server) S
HTTP WordPress Activity Log Plugin XSS Vulnerability (To Server) S
HTTP WordPress Activity Log Plugin XSS Vulnerability S
HTTP WordPress Activity Log Plugin XSS Vulnerability_1 S
HTTP WordPress Lazy Content Slider Plugin CSRF Vulnerability (From Server) S
HTTP WordPress Lazy Content Slider Plugin CSRF Vulnerability (To Server) S
HTTP WPN-XM Serverstack CSRF Vulnerability (From Server) S
HTTP WPN-XM Serverstack CSRF Vulnerability (To Server) S
HTTP WPN-XM Serverstack CSRF Vulnerability_1 (From Server) S
HTTP WPN-XM Serverstack CSRF Vulnerability_1 (To Server) S
HTTP WPN-XM Serverstack CSRF Vulnerability_2 (From Server) S
HTTP WPN-XM Serverstack CSRF Vulnerability_2 (To Server) S
Konica Minolta FTP Utility 1.0 - Directory Traversal S
Konica Minolta FTP Utility 1.0 - Remote Command Execution S
Konica Minolta FTP Utility 1.00 Post Auth CWD Command SEH Overflow S
Malware Compromised Website with iframe to Neutrino EK (zaposlen1-neyle.redhilltsa.org.uk) S
Malware DNS Request for compromised Web Site associated with Rig EK (www.beautyhows.com) S
Malware DNS Request for Domain associated with BART Ransomware (s3clm4lufbmfhmeb.onion.cab) S
Malware DNS Request for Domain associated with BART Ransomware (s3clm4lufbmfhmeb.onion.link) S
Malware DNS Request for Domain associated with BART Ransomware (s3clm4lufbmfhmeb.onion.to) S
Malware DNS Request for Domain associated with BART Ransomware (s3clm4lufbmfhmeb.tor2web.org) S
Malware DNS Request for Domain associated with BART Ransomware (www.oheruci.top) S
Malware DNS Request for Domain associated with CrypMIC Ransomware (ccjlwb22w6c22p2k.onion.ci) S
Malware DNS Request for Domain associated with CrypMIC Ransomware (ccjlwb22w6c22p2k.onion.to) S
Malware DNS Request for Domain associated with NeutrinoEK (www.nycrunningmama.com) S
Malware DNS Request for Domain associated with NeutrinoEK (zaposlen1-neyle.redhilltsa.org.uk) S
Malware DNS Request for Domain associated with Rig EK and BART Ransomware (r29q8i13.top) S
Malware Download Flash File containing CrypMIC RansomWare delivered from Neutrino EK S
Malware Download Flash File containing malicious code relating to EITest Gate and Rig EK S
Malware Download Flash File containing malicious code relating to Rig EK and BART Ransomware S
Malware Download JavaScript containing malicious code relating to EITest Gate and Rig EK S
ProFTPd 1.3.5 (mod_copy) - Remote Command Execution S
ProFTPd 1.3.5 - File Copy S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.