Search

Traffic File Update - August 2017

This Traffic IQ Professional update for August 2017 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for August 2017

171 Application Exploits

HTTP 2daybiz Opensource Classified Ads Script 'advance_result.php' SQL Inj Vuln S
HTTP Admidio 'members_function.php' CSRF Vuln (From server) S
HTTP Admidio 'members_function.php' CSRF Vuln (To server) S
HTTP Advantech SUSIAccess = 3.0 - Directory Traversal Information Disclosure (Metasploit) S
HTTP Apache Struts 2.3.x Showcase - Remote Code Execution (PoC) S
HTTP Barracuda Load Balancer Firmware 6.0.1.006 - Remote Command Injection (Metasploit) S
HTTP Belkin NetCam F7D7601 - Remote Command Execution S
HTTP Belkin NetCam F7D7601 - User Credentials Information Disclosure S
HTTP Belkin NetCam F7D7601 - Wifi Password Information Disclosure S
HTTP Best Soft Inc WordPress Plugin Car Rental System SQL Inj Vuln S
HTTP Best Soft Inc WordPress Plugin Car Rental System SQL Inj Vuln_1 S
HTTP Best Soft Inc WordPress Plugin Car Rental System SQL Inj Vuln_2 S
HTTP BOA Web Server 0.94.14rc21 - Arbitrary File Access S
HTTP Citrix CloudBridge - 'CAKEPHP' Cookie Command Injection S
HTTP CMS Made Simple 'addgroup.php' Cross Site Scripting Vuln S
HTTP CodeCanyon Premium Servers List Tracker SQL Injection Vuln S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series - 'running.CFG' Auth Bypass S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series - Authentication Bypass S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series - Configuration Download S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series - Privilege Escalation S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series-Session Timeout CSRF (From Server) S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series-Session Timeout CSRF (To Server) S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series-Telnet - Web Access CSRF (From Server) S
HTTP Dasan Networks GPON ONT WiFi Router H64X Series-Telnet - Web Access CSRF (To Server) S
HTTP DataTaker DT80 dEX 1.50.012 - Information Disclosure S
HTTP DCOS Marathon UI - Docker Exploit (Metasploit) S
HTTP Eagle Technosys Parcel Delivery Booking Script SQL Inj Vuln S
HTTP Eagle Technosys Tour Package Booking SQL injection Vuln S
HTTP Eagle Technosys Tour Package Booking SQL injection Vuln_1 S
HTTP Ektron CMS 'content.aspx' Cross Site Scripting Vuln S
HTTP Ektron CMS 'SelectUserGroup.aspx' Cross Site Scripting Vuln S
HTTP Ektron CMS 'workarea.aspx' Cross Site Scripting Vuln S
HTTP Eltek SmartPack - Backdoor Account S
HTTP Emby MediaServer SQL Injection Vuln S
HTTP Entrepreneur B2B Script 'product_view1.php' SQL Inj Vuln S
HTTP Fortinet FortiOS Cross Site Scripting Vuln S
HTTP Fortinet FortiOS Cross Site Scripting Vuln_1 S
HTTP Fortinet FortiOS Cross Site Scripting Vuln_2 S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_NAME0' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_NAME1' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_NAME2' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_NAME3' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_NUM' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_TYPE0' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_TYPE1' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_TYPE2' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'LEV_TYPE3' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'NAME' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'next' Reflected XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - 'prototype' XSS S
HTTP HPE OpenCall Media Platform (OCMP) 4.3.2 - Trigger XSS S
HTTP Invision Power Steam Profile Integration 'index.php' SQL injection Vuln S
HTTP Joomla! 'index.php' SQL Injection Vuln S
HTTP Joomla! Component StreetGuessr Game 'index.php' SQL Injection Vuln S
HTTP Joomla! Component Ultimate Property Listing 'index.php' SQL Injection Vuln S
HTTP Joomla! Component Ultimate Property Listing 'index.php' SQL Injection Vuln_1 S
HTTP Joomla! Component Ultimate Property Listing 'index.php' SQL Injection Vuln_2 S
HTTP Kaspersky Anti-Virus for Linux File Server Cross Site Scripting Vuln S
HTTP Kaspersky Anti-Virus for Linux File Server Directory Traversal Vuln S
HTTP Kinsey InforLawson ESBUS SQL Injection Vulnerability S
HTTP Kinsey InforLawson ESBUS SQL Injection Vulnerability_1 S
HTTP ManageEngine Desktop Central 10 Build 100087 - Remote Code Execution (Metasploit) S
HTTP Mantis Bug Tracker 1.3.102.3.0 - Cross-Site Request Forgery (From Server) S
HTTP Mantis Bug Tracker 1.3.102.3.0 - Cross-Site Request Forgery (To Server) S
HTTP Netscaler SD-WAN 9.1.2.26.561201 - Command Injection (Metasploit) S
HTTP NfSen 1.3.7 AlienVault OSSIM 5.3.4 - Command Injection S
HTTP nuevoMailer 6.0 - SQL Injection S
HTTP OpenDreamBox 2.0.0 Plugin WebAdmin - Remote Code Execution S
HTTP Oracle PeopleSoft - Server-Side Request Forgery S
HTTP Orangescrum 'ajax_change_AssignTo' SQL Injection Vuln S
HTTP Orangescrum 'ajax_change_AssignTo' SQL Injection Vuln_1 S
HTTP OV3 Online Administration 'download.php' Directory Traversal Vuln S
HTTP OV3 Online Administration 'ov3.php' SQL Injection Vuln S
HTTP OV3 Online Administration 'ov3.php' SQL Injection Vuln_1 S
HTTP OV3 Online Administration 'ov3.php' SQL Injection Vuln_2 S
HTTP OV3 Online Administration 'ov3.php' SQL Injection Vuln_3 S
HTTP OV3 Online Administration 'ov3.php' SQL Injection Vuln_4 S
HTTP OV3 Online Administration 'ov3.php' SQL Injection Vuln_5 S
HTTP Payage Extension for Joomla 'index.php' SQL Injection Vuln S
HTTP Pelco SarixSpectra Cameras - Remote Code Execution S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_1 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_1 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_10 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_10 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_11 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_11 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_12 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_12 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_13 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_13 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_14 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_14 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_15 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_15 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_16 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_16 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_17 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_17 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_18 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_18 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_2 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_2 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_3 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_3 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_4 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_4 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_5 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_5 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_6 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_6 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_7 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_7 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_8 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_8 (To Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_9 (From Server) S
HTTP Pelco SarixSpectra Cameras Cross Site Scripting Vuln_9 (To Server) S
HTTP Pelco VideoXpert 1.12.105 - Directory Traversal S
HTTP Pelco VideoXpert 1.12.105 - Information Disclosure S
HTTP Personify360 7.5.27.6.1 - Improper Database Schema Access Restrictions S
HTTP PHP Jabbers PHP Forum Script 'preview.php' SQL Injection Vuln S
HTTP PHP ScriptsMall Entrepreneur B2B Script 'news-details.php' SQL Injection Vulnerability S
HTTP PHP ScriptsMall Network Community Script 'refer_job_view.php' SQL Injection Vuln S
HTTP PHP ScriptsMall PHP Classifieds Rental Script 'viewsubproducts.php' SQL Injection Vuln S
HTTP Piwigo Plugin Facetag 0.0.3 - 'facetag.changeTag' SQL Injection S
HTTP Piwigo Plugin Facetag 0.0.3 - 'facetag.listTags' SQL Injection S
HTTP Piwigo Plugin User Tag 'ws.php' Cross Site Scripting Vuln S
HTTP REDDOXX Appliance Build 2032 2.0.625 - 'count' Remote Command Execution S
HTTP REDDOXX Appliance Build 2032 2.0.625 - 'DownloadFile' Arbitrary File Disclosure S
HTTP REDDOXX Appliance Build 2032 2.0.625 - 'GetDirectoryList' Arbitrary File Disclosure S
HTTP Sarutech De-Journal 'abstract.php' SQL Injection Vuln S
HTTP Sarutech De-Journal 'page.php' SQL Injection Vuln S
HTTP Sarutech De-Tutor 'blog-details.php' SQL Injection Vuln S
HTTP Sarutech DeWorkshop 'customerpage.php' SQL Injection Vuln S
HTTP Sarutech DeWorkshop 'email.php' SQL Injection Vuln S
HTTP Sarutech DeWorkshop 'fileadd.php' SQL Injection Vuln S
HTTP Sarutech DeWorkshop 'vehicleadd.php' SQL Injection Vuln S
HTTP ScriptFolder GIF Collection 'gifs.php' SQL Injection Vuln S
HTTP ScriptFolder ImageBay 'picture.php' SQL Injection Vuln S
HTTP ScriptFolder ImageBay and GIF Collection 'updaterate.php' SQL Injection Vuln S
HTTP Sonicwall 8.1.0.2-14sv - 'sitecustomization.cgi' Command Injection (Metasploit) S
HTTP Sonicwall 8.1.0.6-21sv - 'gencsr.cgi' Command Injection (Metasploit) S
HTTP Sonicwall Secure Remote Access 8.1.0.2-14sv - 'currentTSREmailTo' Command Injection S
HTTP Sonicwall Secure Remote Access 8.1.0.2-14sv - 'tsrDeleteRestartedFile' Command Injection S
HTTP Sophos Web Appliance 4.3.0.2 - 'trafficType' Remote Command Injection (Metasploit) S
HTTP Subsonic 'avatar.view' Cross Site Scripting Vuln S
HTTP Subsonic 'coverArt.view' Cross Site Scripting Vuln S
HTTP Subsonic 'userChart.view' Cross Site Scripting Vuln S
HTTP Subsonic CSRF Vulnerability (From Server) S
HTTP Subsonic CSRF Vulnerability (To Server) S
HTTP Synology Photo Station 6.7.3-3432 6.3-2967 - Remote Code Execution S
HTTP TerraMaster F2-420 NAS TOS 3.0.30 - Unauthenticated Remote Code Execution as Root S
HTTP VehicleWorkshop - Arbitrary File Upload S
HTTP WDTV Live SMP 2.03.20 - Remote Password Reset S
HTTP WebFile Explorer 1.0 - Arbitrary File Download S
HTTP WordPress Plugin Easy Modal 'admin.php' SQL Injection Vuln S
HTTP WordPress Plugin Easy Modal 'admin.php' SQL Injection Vuln_1 S
HTTP WordPress Plugin KittyCatfish 'base.css.php' SQL Inj Vuln S
HTTP WordPress Plugin KittyCatfish 'kittycatfish.php' SQL Inj Vuln S
HTTP WordPress Plugin Ultimate Product Catalogue 'admin-ajax.php' SQL Inj Vuln (From Server) S
HTTP WordPress Plugin Ultimate Product Catalogue 'admin-ajax.php' SQL Inj Vuln (To Server) S
HTTP WordPress Plugin WatuPRO 'admin-ajax.php' SQL Injection Vuln S
HTTP WordPress Plugin Wow Forms 'admin-ajax.php' SQL Injection Vuln S
HTTP WordPress Plugin Wow Viral Signups 'admin-ajax.php' SQL Inj Vuln S
HTTP WordPress Plugin WP Jobs 'edit.php' SQL Injection Vuln S
HTTP WordPress Plugin WP-Testimonials 'admin.php' SQL Injection Vuln S
HTTP Yaws 1.91 - Access Logs Remote File Disclosure S
HTTP Yaws 1.91 - Private Key Remote File Disclosure S
Solarwinds Kiwi Syslog 9.6.1.6 - Denial of Service S
Zookeeper 3.5.2 Client - Denial of Service S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.