Search

Traffic File Update - February 2014

This Traffic IQ Professional update for February 2014 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for February 2014

105 Application Exploits

bloofoxCMS 0.5.0 Cross Site Request Forgery Vulnerability S
bloofoxCMS 0.5.0 Cross Site Request Forgery Vulnerability_1 S
bloofoxCMS 0.5.0 File Include Vulnerability S
bloofoxCMS 0.5.0 SQL Injection Vulnerability S
bloofoxCMS 0.5.0 SQL Injection Vulnerability_1 S
Booking Calendar PHP Cross Site Request Forgery Vulnerability S
Booking Calendar PHP Cross Site Request Forgery Vulnerability_1 S
Booking Calendar PHP Cross Site Scripting Vulnerability S
Booking Calendar PHP SQL Injection Vulnerability S
Booking Calendar PHP SQL Injection Vulnerability_1 S
Booking Calendar PHP SQL Injection Vulnerability_2 S
CCProxy Crafted INI File Handling Integer Overflow Vulnerability S
Cells Blog 3.3 Cross Site Scripting Vulnerability S
Cells Blog 3.3 SQL Injection Vulnerability S
DomPHP 0.83 SQL Injection Vulnerability S
DomPHP index.php Directory Traversal Vulnerability S
Doodle4Gift Cross Site Scripting Vulnerability S
Doodle4Gift Information Disclosure Vulnerability S
Easy Karaoke Player WAV File Handling DoS Vulnerability S
GOM Player '.avi' File CVE-2013-7184 Memory Corruption Vulnerability S
HTTP Advanced Dewplayer Plugin for WordPress 'download-file.php' Vulnerability S
HTTP Built2Go PHP Shopping 'edit_admin.php' CSRF Vulnerability S
HTTP CMS Afroditi 'id' Parameter CVE-2013-7278 SQL Injection Vulnerablity S
HTTP CMS Afroditi 'id' Parameter CVE-2013-7278 SQL Injection Vulnerablity_1 S
HTTP Cubic CMS agent.php 'resource_id' Parameter SQL Injection Vulnerability S
HTTP Cubic CMS agent.php 'version_id' Parameter SQL Injection Vulnerability S
HTTP Cubic CMS agent.php path Parameter Remote Path Traversal Vulnerability S
HTTP D-Link DSL-2750B Cross Site Request Forgery Vulnerability S
HTTP Daum Game IconCreate Method CVE-2013-7246 Buffer Overflow Vulnerability S
HTTP DirectControlTM admin.asp Admin User Creation CSRF Vulnerability S
HTTP eduTrac 'showmask' Parameter CVE-2013-7097 Directory Traversal Vulnerability S
HTTP EZGenerator centraladmin.php Admin Account Creation CSRF Vulnerability S
HTTP EZGenerator utils.php filename Parameter File Disclosure Vulnerability S
HTTP Hiox Guest Book add.php 'cmt' Parameter XSS Vulnerability S
HTTP Hiox Guest Book add.php 'email' Parameter XSS Vulnerability S
HTTP Hiox Guest Book add.php 'name1' Parameter XSS Vulnerability S
HTTP Horizon QCMS 'category' Parameter SQL Injection Vulnerablity S
HTTP Horizon QCMS 'fopen()' Function Directory Traversal Vulnerability S
HTTP Icinga Web GUI CVE-2013-7108 Multiple Off-By-One Memory Corruption Vulnerability S
HTTP InstantCMS 'orderby' Parameter CVE-2013-6839 SQL Injection Vulnerability S
HTTP iScript MultiCart productdetails.php Script CSRF Vulnerability S
HTTP JForum 'adminUsers' Module CVE-2013-7209 CSRF Vulnerability S
HTTP Joomla AceSearch Component 'query' Parameter XSS Vulnerability S
HTTP Middle School Homework Page view.php class Parameter XSS Vulnerability S
HTTP Middle School Homework Page view.php SQL Injection Vulnerability S
HTTP MW6 Technologies Aztec Data Parameter Arbitrary Code Execution Vulnerability S
HTTP MW6 Technologies DataMatrix Data Parameter Arbitrary Code Execution Vulnerability S
HTTP MW6 Technologies MaxiCode Data Parameter Arbitrary Code Execution Vulnerability S
HTTP Open Web Analytics 'owa_email_address' Parameter SQL Injection Vulnerablity S
HTTP Osclass Multiple Cross Site Request Forgery Vulnerabilities S
HTTP Osclass Multiple Directory Traversal Vulnerabilities S
HTTP Osclass Multiple SQL Injection Vulnerabilities S
HTTP osCommerce geo_zones.php zID Parameter SQL Injection Vulnerability S
HTTP osCommerce geo_zones.php zID Parameter SQL Injection Vulnerability_1 S
HTTP php MBB cms article.php 'catid' Parameter SQL Injection Vulnerability S
HTTP php MBB cms article.php 'id' Parameter SQL Injection Vulnerability S
HTTP php MBB cms index.php Multiple Parameters Local File Inclusion Vulnerability S
HTTP php MBB cms page.php 'pid' Parameter SQL Injection Vulnerability S
HTTP SonarQube Jenkins Plugin CVE-2013-5676 Password Disclosure Vulnerability S
HTTP Tableau Server CVE-2014-1204 SQL Injection Vulnerability S
HTTP Technicolor TC7200 Factory Reset CSRF Vulnerability S
HTTP UAEPD Shopping Script news.php id Parameter SQL Injection Vulnerability S
HTTP UAEPD Shopping Script page.php id Parameter SQL Injection Vulnerability S
HTTP UAEPD Shopping Script products.php cat_id Parameter SQL Injection Vulnerability S
HTTP UAEPD Shopping Script products.php p_id Parameter SQL Injection Vulnerability S
HTTP Wordpress InTouch Theme 'intouch_failure' Parameter XSS Vulnerability S
HTTP Wordpress Page Layout Builder 'layout_settings_id' Parameter XSS Vulnerability S
HTTP WordPress Persuasion Theme 'dl-skin.php' Arbitrary File Access Vulnerability S
HTTP Wordpress Recommend To a Friend Plugin 'current_url' parameter XSS Vulnerability S
iTechClassifieds 3.03.057 SQL Injection Vulnerability S
iTechClassifieds 3.03.057 SQL Injection Vulnerability_1 S
JAMon 2.7 Cross Site Scripting Vulnerability S
JAMon 2.7 Cross Site Scripting Vulnerability_1 S
Jobsite Logo Cross Site Scripting Vulnerability S
Jobsite Logo SQL Injection Vulnerability S
Joomla JV Comment 3.0.2 SQL Injection Vulnerability S
Joomla Komento Extension 1.7.2 Cross Site Scripting Vulnerability S
Joomla Komento Extension 1.7.2 Cross Site Scripting Vulnerability_1 S
LinPHA 1.3.4 Cross Site Request Forgery Vulnerability S
LinPHA 1.3.4 Cross Site Request Forgery Vulnerability_1 S
LinPHA 1.3.4 Cross Site Scripting Vulnerability S
MuPDF 'xps_parse_color()' Function Stack Buffer Overflow Vulnerability S
mySeatXT 0.2134 SQL Injection Vulnerability S
Ofilter Player WAV File Handling Division-by-zero DoS Vulnerability S
Oracle Outside In Technology CVE-2013-5791 Stack Buffer Overflow Vulnerability S
PHP Webcam Video Conference Cross Site Scripting Vulnerability S
PHP Webcam Video Conference Local File Inclusion Vulnerability S
PizzaInn_Project 'reserve-exec.php' SQL Injection Vulnerability S
PotPlayer Multiple Files Remote Denial of Service Vulnerabilities S
PotPlayer Multiple Files Remote Denial of Service Vulnerabilities_1 S
RealPlayer RMP File Version Attribute CVE-2013-6877 Buffer Overflow Vulnerability S
Seagate BlackArmor NAS 220 getAlias.php ip Parameter Command Execution Vulnerability S
Simple E-Document 1.31 SQL Injection Vulnerability S
Teracom Modem essid Parameter Cross Site Scripting Vulnerability S
TopicsViewer 3.0 Beta 1 SQL Injection Vulnerability S
TopicsViewer 3.0 Beta 1 SQL Injection Vulnerability_1 S
TopicsViewer 3.0 Beta 1 SQL Injection Vulnerability_2 S
TopicsViewer 3.0 Beta 1 SQL Injection Vulnerability_3 S
VUPlayer 2.49 m3u File Buffer Overflow (DEP Bypass) Vulnerability S
WordPress Nokia Maps & Places Plugin 'href' Parameter Cross Site Scripting Vulnerability S
Wordpress Photocrati Theme Cross Site Scripting Vulnerability S
WordPress Social Ring 1.1.9 Cross Site Scripting Vulnerability S
WordPress SS Downloads Cross Site Scripting Vulnerability S
Xfig '.fig' File Color Definition Stack Buffer Overflow Vulnerability S
XOS Shop 1.0RC7o SQL Injection Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.