Search

Traffic File Update - December 2014

This Traffic IQ Professional update for December 2014 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for December 2014

166 Application Exploits

Advantech EKI-6340 Command Injection Vulnerability S
ASX to MP3 Converter Remote Stack Overflow Vulnerability S
binutils CVE-2014-8485 Arbitrary Code Execution Vulnerability S
CM Download Manager Plugin For WordPress CmdownloadController.php Code Execution S
Device42 WAN Emulator 2.3 Ping Command Injection Vulnerability S
Device42 WAN Emulator 2.3 Traceroute Command Injection Vulnerability S
Drupal Core Password Hashing API Denial Of Service Vulnerability S
Elipse E3 HTTP Denial Of Service Vulnerability S
Enalean Tuleap 7.2 - XXE File Disclosure Vulnerability S
Enalean Tuleap 7.2 - XXE File Disclosure Vulnerability_1 S
Hikvision DS-7204 RTSP Buffer Overflow Vulnerability S
HTTP BMC Track-It! - Arbitary File Download Vulnerability S
HTTP BMC Track-It! - Blind SQL injection Vulnerability S
HTTP Bosch Security Systems Multiple Information Disclosure Vulnerabilities S
HTTP Bosch Security Systems Multiple Information Disclosure Vulnerabilities_1 S
HTTP Cart66 Lite WordPress Ecommerce 1.5.1.17 - Blind SQL Injection Vulnerability S
HTTP CBN CH6640E & CG6640E basicLanUsers.html Vulnerability S
HTTP CBN CH6640E & CG6640E CmgwBasicSetup.xml Vulnerability S
HTTP CBN CH6640E & CG6640E CmgwWirelessSecurity.xml Vulnerability S
HTTP CBN CH6640E & CG6640E DocsisConfigFile.xml Vulnerability S
HTTP CBN CH6640E & CG6640E setAdvancedOptions.html UPnP Manipulation CSRF Vulnerability S
HTTP CBN CH6640E & CG6640E setAdvancedOptions.html UPnP Manipulation CSRF Vulnerability_1 S
HTTP CBN CH6640E & CG6640E setBasicDHCP1.html Static MAC CSRF Vulnerability S
HTTP CBN CH6640E & CG6640E setWirelessSecurity.html WiFi Password CSRF Vulnerability S
HTTP CBN CH6640E & CG6640E wirelessChannelStatus.html DoS CVE-2014-8657 Vulnerability S
HTTP CBN CH6640E &CG6640E basicDDNS.html DDNS CSRF CVE-2014-8654 Vulnerability S
HTTP Centreon and Centreon Enterprise Server CVE-2014-3829 Remote Command Execution Vuln S
HTTP Centreon and Centreon Enterprise Server CVE-2014-3829 Remote Command Execution Vuln_1 S
HTTP CNIL CookieViz 'info.php' Cross Site Script Vulnerability S
HTTP CNIL CookieViz 'info.php' SQL Injection Vulnerability S
HTTP CNIL CookieViz 'info.php' SQL Injection Vulnerability_1 S
HTTP Dolibarr multiple SQL Injection Vulnerability S
HTTP Dolibarr multiple SQL Injection Vulnerability_1 S
HTTP Dolibarr multiple SQL Injection Vulnerability_2 S
HTTP Dolibarr multiple SQL Injection Vulnerability_3 S
HTTP Dolibarr multiple SQL Injection Vulnerability_4 S
HTTP Dolibarr multiple SQL Injection Vulnerability_5 S
HTTP Dolibarr multiple SQL Injection Vulnerability_6 S
HTTP Dolibarr multiple SQL Injection Vulnerability_7 S
HTTP Dolibarr multiple SQL Injection Vulnerability_8 S
HTTP DrayTek VigorACS SI FileServlet f Parameter Path Traversal LFI Vulnerability S
HTTP DukaPress plugin for WordPress dp_image.php Directory Traversal Vulnerability S
HTTP Enalean Tuleap 7.4.99.5 - Remote Command Execution S
HTTP F5 BIG-IP XML information disclosure S
HTTP Feng Office Arbitrary File Upload Vulnerability S
HTTP FlatNuke index.php Cross-Site Scripting Vulnerability S
HTTP Forma Lms 'appCore-index.php' Cross Site Scripting Vulnerability S
HTTP Forma Lms 'appCore-index.php' Cross Site Scripting Vulnerability_1 S
HTTP GoGits Gogs issue.go SQL Injection Vulnerability S
HTTP GoGits Gogs Repository Search SQL Injection Vulnerability S
HTTP Google Doc Embedder plugin for WordPress google-document-embedder SQL injection Vuln S
HTTP HTTP File Server 2.3a 2.3b 2.3c - Remote Command Execution S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_1 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_2 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_3 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_4 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_5 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_6 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_7 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_8 S
HTTP IPUX IP Camera (UltraHVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_9 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_1 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_2 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_3 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_4 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_5 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_6 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_7 S
HTTP IPUX IP Camera (UltraMJCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_8 S
HTTP IPUX IP Camera (UltraSVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability S
HTTP IPUX IP Camera (UltraSVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_1 S
HTTP IPUX IP Camera (UltraSVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_2 S
HTTP IPUX IP Camera (UltraSVCamX.ocx) ActiveX Stack Buffer Overflow Vulnerability_3 S
HTTP Joomla! Simple Email Form Extension 'index.php' Cross Site Scripting Vulnerability S
HTTP Joomla! Simple Email Form Extension 'index.php' Cross Site Scripting Vulnerability_1 S
HTTP Juniper Junos J-Web Privilege Escalation Vulnerability S
HTTP Juniper Junos J-Web Privilege Escalation Vulnerability_1 S
HTTP ManageEngine EventLog Analyzer Security Authorization Vulnerability S
HTTP ManageEngine OpManager SQL Injection Vulnerability S
HTTP ManageEngine OpManager SQL Injection Vulnerability_1 S
HTTP ManageEngine Password Manager Pro 'BulkEditSearchResult.cc' SQL Injection Vulnerability S
HTTP ManageEngine Products Multiple Arbitrary File Download Vulnerability S
HTTP ManageEngine Products Multiple Arbitrary File Download Vulnerability_1 S
HTTP ManageEngine Products Multiple Arbitrary File Download Vulnerability_2 S
HTTP MantisBT 'view_all_set.php' Multiple SQL Injection Vulnerability S
HTTP MantisBT 'view_all_set.php' Multiple SQL Injection Vulnerability_1 S
HTTP Multiple Barracuda products information disclosure S
HTTP Multiple Barracuda products information disclosure_1 S
HTTP Multiple Barracuda products information disclosure_2 S
HTTP Multiple Barracuda products information disclosure_3 S
HTTP MyBB question_id SQL Injection Vulnerability S
HTTP Netgear Wireless Router WNR500 - Parameter Traversal Arbitrary File Access Exploit S
HTTP NeuroML Transform.jsp localFile Parameter Path Disclosure Vulnerability S
HTTP NeuroML Transform.jsp pastedFile Parameter XXE Injection Vulnerability S
HTTP NeuroML Transform.jsp xslFile Parameter XSS Vulnerability S
HTTP NeuroML Validation.jsp pastedFile Parameter XSS Vulnerability S
HTTP NeuroML ViewNeuroMLFile.jsp localFile Parameter LFI Vulnerability S
HTTP Nibbleblog index.php Cross-Site Scripting Vulnerability S
HTTP Nibbleblog index.php Cross-Site Scripting Vulnerability_1 S
HTTP osCommerce 2.3.4 Cross Site Request Forgery Vulnerability S
HTTP osCommerce 2.3.4 Cross Site Request Forgery Vulnerability_1 S
HTTP osCommerce 2.3.4 Cross Site Request Forgery Vulnerability_2 S
HTTP osCommerce 2.3.4 Cross Site Request Forgery Vulnerability_3 S
HTTP osCommerce 2.3.4 Cross Site Request Forgery Vulnerability_4 S
HTTP osCommerce 2.3.4 Cross Site Request Forgery Vulnerability_5 S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability_1 S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability_2 S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability_3 S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability_4 S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability_5 S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability_6 S
HTTP osCommerce 2.3.4 Cross Site Scripting Vulnerability_7 S
HTTP Paid Memberships Pro plugin for WordPress getfile.php Directory Traversal Vulnerability S
HTTP Pandora FMS 'index.php' Cross Site Scripting Vulnerability S
HTTP Pandora FMS 'index.php' SQL Injection Vulnerability S
HTTP Pandora FMS 'index.php' SQL Injection Vulnerability_1 S
HTTP Pandora FMS Default Login Credentials Vulnerability S
HTTP Pandora FMS Payload Injection Vulnerability S
HTTP Parallels Web Presence Builder login.aspx Security Bypass Vulnerability S
HTTP Parallels Web Presence Builder Pages.aspx Security Bypass Vulnerability S
HTTP Parallels Web Presence Builder Site.ashx p Parameter Vulnerability S
HTTP PhpMyRecipes Dosearch.php SQL Injection Vulnerability S
HTTP Progress OpenEdge 'reportViewAction.jsp' Directory Traversal Vulnerability S
HTTP RobotStats 'robots.lib.php' SQL Injection Vulnerability S
HTTP RobotStats 1.0 - HTML Injection Vulnerability S
HTTP RobotStats 1.0 - HTML Injection Vulnerability_1 S
HTTP SEO Panel seo-plugins.php getSeoPluginInfo Method SQL Injection Vulnerability S
HTTP Snowfox CMS v1.0 CSRF Add Admin Vulnerability S
HTTP Snowfox CMS v1.0 CSRF Add Admin Vulnerability_1 S
HTTP Status2k functions.php multies Parameter Code Execution Vulnerability S
HTTP Status2k phpinfo CVE-2014-5094 Information Disclosure Vulnerability S
HTTP Symantec Endpoint Protection Manager Arbitrary File Write Vulnerability S
HTTP TRENDnet SecurView Wireless Network Camera TV-IP422WN (UltraCamX.ocx) Stack BoF S
HTTP TRENDnet SecurView Wireless Network Camera TV-IP422WN (UltraCamX.ocx) Stack BoF_1 S
HTTP Ultra Electronics AEP Ultra Protect login.cgi Path Traversal Vulnerability S
HTTP VLD Interactive vldPersonals index.php Cross-Site Scripting Vulnerability S
HTTP WordPress Alipay Plugin 'inc.tenpay_notify.php' CVE-2014-4514 Vulnerability S
HTTP WordPress CBI Referral Manager Plugin 'getNetworkSites.php' Vulnerability S
HTTP Wordpress DB Backup Plugin - Arbitrary File Download S
HTTP Wordpress Nextend Facebook Connect Plugin 1.4.59 - XSS Vulnerability S
HTTP Wordpress Plugins Premium Gallery Manager Unauthenticated Configuration Access Vuln S
HTTP Wordpress Plugins Premium Gallery Manager Unauthenticated Configuration Access Vuln_1 S
HTTP WordPress WP AmASIN Plugin LFI CVE-2014-4577 Vulnerability S
HTTP WordPress wpDataTables Plugin 'wp-admin-admin-ajax.php' SQL Injection Vulnerability S
HTTP Wordpress wpDataTables Plugin 1.5.3 - Unauthenticated Shell Upload Vulnerability S
HTTP Xavoc Technocrats xEpan Cross-Site Request Forgery Vulnerability S
HTTP xEpan 1.0.4 - File Upload Vulnerability S
HTTP xEpan 1.0.4 - File Upload Vulnerability_1 S
HTTP xEpan 1.0.4 - Information Disclosure Vulnerability S
HTTP XOOPS admin.php SQL Injection Vulnerability S
Malware 'SoakSoak' DNS Query S
Malware 'SoakSoak' DNS Query_1 S
Malware 'SoakSoak' Malicious File Download From Bad Domain Name S
Malware 'SoakSoak' Malicious File Download From Bad Domain Name_1 S
Malware 'SoakSoak' Malicious File Download S
MantisBT ImportXml.php Remote Code Execution Vulnerability S
Microsoft OLE Automation Array Remote Code Execution Vulnerability S
Mini-stream Software RM-MP3 Converter '.wax ' File Buffer Overflow Vulnerability S
MINIX Remote Denial Of Service Vulnerability S
MyBB unset_globals Code Remote Execution Vulnerability S
NTP mode7 MODE_PRIVATE Denial Of Service Vulnerability S
TP-Link TL-WR740N PingIframeRpm.htm Denial Of Service Vulnerability S
WordPress wp-includes class-phpass.php Denial Of Service Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.