Traffic IQ Professional
Traffic File Update for November 2015
165 Application Exploits
BisonWare BisonFTP Server 3.5 - Directory Traversal S
HTTP actiTIME 2015.2 - 'settings.do' Open Redirect (Percent Encoded) S
HTTP actiTIME 2015.2 - 'settings.do' Open Redirect S
HTTP actiTIME 2015.2 - HTTP Response Splitting (Percent Encoded) S
HTTP actiTIME 2015.2 - HTTP Response Splitting S
HTTP Adobe Flash IExternalizable.writeExternal - Type Confusion S
HTTP articleFR 3.0.7 Arbitrary File Read (Percent Encoded) S
HTTP articleFR 3.0.7 Arbitrary File Read S
HTTP ATutor 2.2 'asc' parameter PHP Code Injection (Percent Encoded) S
HTTP ATutor 2.2 'asc' parameter PHP Code Injection S
HTTP ATutor 2.2 'desc' parameter PHP Code Injection (Percent Encoded) S
HTTP ATutor 2.2 'desc' parameter PHP Code Injection S
HTTP ClipperCMS 1.3.0 - 'id' SQL Injection (Percent Encoded) S
HTTP ClipperCMS 1.3.0 - 'id' SQL Injection S
HTTP ClipperCMS 1.3.0 - 'newusername' SQL Injection S
HTTP D-Link Wireless Router CSRF Vulnerability (From Server) S
HTTP D-Link Wireless Router CSRF Vulnerability (To Server) S
HTTP DevExpress ASP.NET File Manager CVE-2014-2575 Directory Traversal S
HTTP Dream CMS CSRF Add Extension Vulnerability (From Server) S
HTTP Dream CMS CSRF Add Extension Vulnerability (To Server) S
HTTP Easy File Sharing Web Server 7.2 - Remote SEH Based Overflow S
HTTP eBay Magento CE 1.9.2.1 - Command Injection S
HTTP eBay Magento CE 1.9.2.1 - Unrestricted Cron Script Code Execution S
HTTP Endian Firewall Multiple Cross Site Scripting Vulnerability S
HTTP Endian Firewall Multiple Cross Site Scripting Vulnerability_1 S
HTTP Endian Firewall Multiple Cross Site Scripting Vulnerability_2 S
HTTP Foreman Smart-Proxy Remote Command Injection Vulnerability S
HTTP Google Android Libstagefright Multiple Memory Corruption S
HTTP Google Android Libstagefright Multiple Memory Corruption_1 S
HTTP Jenkins 1.633 - Unauthenticated Credential Recovery S
HTTP Joomla JNews (com_jnews) Component 8.5.1 - SQL Injection S
HTTP Joomla Real Estate Manager Component 3.7 - 'order_direction' SQL injection S
HTTP Joomla Real Estate Manager Component 3.7 - 'order_field' SQL injection S
HTTP Juniper Mobility Software 'aaa-wba_login.html' XSS Vulnerability S
HTTP K2 SmartForms BlackPearl SQL Injection S
HTTP ManageEngine ServiceDesk Plus 9.1 build 9110 - Path Traversal (Percent Encoded) S
HTTP ManageEngine ServiceDesk Plus 9.1 build 9110 - Path Traversal S
HTTP Mango Automation 2.6.0 CSRF Add Admin CVE-2015-6493 Vulnerability (SCADA) S
HTTP Mango Automation 2.6.0 CSRF CVE-2015-7904 Vulnerability (SCADA) S
HTTP Mango Automation CSRF CVE-2015-7901 Command Execution Vulnerability (SCADA) S
HTTP Mango Automation Debug Log View CVE-2015-7900 Vulnerability (SCADA) S
HTTP Mango Automation Debug Log View CVE-2015-7900 Vulnerability_1 (SCADA) S
HTTP Mango Automation Debug Log View CVE-2015-7900 Vulnerability_2 (SCADA) S
HTTP Mango Automation Remote XSS POST Injection CVE-2015-6494 Vulnerability (SCADA) S
HTTP Mango Automation User Enumeration CVE-2015-7902 Vulnerability (SCADA) S
HTTP Mango Automation User Enumeration CVE-2015-7902 Vulnerability_1 (SCADA) S
HTTP Microsoft Office 2007 wwlib.dll fcPlcfFldMom Uninitialized Heap Usage S
HTTP Netgear N300 Authentication Bypass Vulnerability S
HTTP Netgear Voice Gateway 2.3.0.23_2.3.23 - Command Injection S
HTTP NXFilter CSRF Vulnerability (From Server) S
HTTP NXFilter CSRF Vulnerability (To Server) S
HTTP NXFilter CSRF Vulnerability_1 (From Server) S
HTTP NXFilter CSRF Vulnerability_1 (To Server) S
HTTP NXFilter CSRF Vulnerability_2 (From Server) S
HTTP NXFilter CSRF Vulnerability_2 (To Server) S
HTTP NXFilter CSRF Vulnerability_3 (From Server) S
HTTP NXFilter CSRF Vulnerability_3 (To Server) S
HTTP NXFilter Multiple XSS Vulnerability S
HTTP NXFilter Multiple XSS Vulnerability_1 S
HTTP Oracle Supply Chain Products Suite XSS Vulnerability S
HTTP Oracle Supply Chain Products Suite XSS Vulnerability_1 S
HTTP Oxwall 1.7.4 - 'maintenance_text' CSRF Vulnerability (From Server) S
HTTP Oxwall 1.7.4 - 'maintenance_text' CSRF Vulnerability (To Server) S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_1 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_10 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_2 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_3 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_4 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_5 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_6 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_7 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_8 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_9 S
HTTP PHP Server Monitor 3.1.1- CSRF Privilege Escalation (From Server) S
HTTP PHP Server Monitor 3.1.1- CSRF Privilege Escalation (To Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability (From Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability (To Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_1 (From Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_1 (To Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_2 (From Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_2 (To Server) S
HTTP PHPfileNavigator XSS Vulnerability S
HTTP PHPfileNavigator XSS Vulnerability_1 S
HTTP PHPfileNavigator XSS Vulnerability_2 S
HTTP Pligg CMS 2.0.2 - 'comment' SQL Injection S
HTTP Pligg CMS 2.0.2 - 'comment_id' SQL Injection (Percent Encoded) S
HTTP Pligg CMS 2.0.2 - 'comment_id' SQL Injection S
HTTP Pligg CMS 2.0.2 - 'enabled' SQL Injection S
HTTP Pligg CMS 2.0.2 Arbitrary Code Execution Vulnerability S
HTTP ProjeQtor 4.5.2 Shell Upload Vulnerability S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'cat_id' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'copy_field' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'css' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'id' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'plisting' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'pshow' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'pwizard' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'text_search' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'tip' SQL Injection S
HTTP Realtyna RPL Joomla Extension CSRF Vulnerability (From Server) S
HTTP Realtyna RPL Joomla Extension CSRF Vulnerability (To Server) S
HTTP Realtyna RPL Joomla Extension XSS Vulnerability S
HTTP Realtyna RPL Joomla Extension XSS Vulnerability_1 S
HTTP RealtyScript 4.0.2 - 'agent' SQL Injection S
HTTP RealtyScript 4.0.2 - 'u_id' SQL Injection (Percent Encoded) S
HTTP RealtyScript 4.0.2 - 'u_id' SQL Injection S
HTTP Subrion 3.X.X - Arbitrary File Download - File Disclosure S
HTTP Subrion 3.X.X - Arbitrary Plugins Installer S
HTTP Subrion 3.X.X - Reset Settings Access Vulnerability S
HTTP TestLink CSRF Vulnerability (From Server) S
HTTP TestLink CSRF Vulnerability (To Server) S
HTTP Th3 MMA mma.php Backdoor Arbitrary File Upload S
HTTP Tomabo MP4 Converter 3.10.12 - 3.11.12 (.m3u) Denial of service S
HTTP TOSHIBA e-Studio Change Admin Password CSRF (From Server) S
HTTP vBulletin 5.1.x - PreAuth 0day Remote Code Execution Exploit S
HTTP Visual Mining NetCharts Server CVE-2014-8516 Arbitrary File Upload S
HTTP WordPress Font 7.5 Path Traversal S
HTTP WordPress mTheme-Unus Local File Inclusion Vulnerability S
HTTP WordPress Pie Register 2.0.18 'invi_del_id' SQL Injection S
HTTP WordPress Pie Register 2.0.18 'select_invitation_code_bulk_option' SQL Injection S
HTTP WordPress Work The Flow Upload Vulnerability S
HTTP Xangati XSR And XNR 'gui_input_test.pl' Remote Command Execution S
HTTP ZCMS 1.1 - 'title' parameter XSS (Percent Encoded) S
HTTP ZCMS 1.1 - 'title' parameter XSS S
HTTP ZHONE S3.0.501 - 'GET' Stack Overflow S
HTTP ZHONE S3.0.501 - 'POST' Stack Overflow S
HTTP Zope Management Interface Cross Site Scripting Vulnerability (From Server) S
HTTP Zope Management Interface Cross Site Scripting Vulnerability (To Server) S
HTTP Zope Management Interface CSRF Vulnerability (From Server) S
HTTP Zope Management Interface CSRF Vulnerability (To Server) S
HTTP ZTE ZXHN H108N Unauthenticated Config Download Vulnerability S
HTTP zTree Cross Site Scripting Vulnerability S
HTTP ZyXEL PMG5318-B20A - OS Command Injection Vulnerability S
Malware CryptoWall 3.0 Web Request to C & C Server S
Malware CryptoWall 3.0 Web Request to C & C Server_1 S
Malware CryptoWall 3.0 Web Request to C & C Server_2 S
Malware CryptoWall 3.0 Web Request to C & C Server_3 S
Malware CryptoWall 3.0 Web Request to C & C Server_4 S
Malware CryptoWall 3.0 Web Request to C & C Server_5 S
Malware CryptoWall 4.0 Check in S
Malware CryptoWall 4.0 Check in_1 S
Malware CryptoWall 4.0 Check in_2 S
Malware CryptoWall 4.0 Check in_3 S
Malware CryptoWall 4.0 Check in_4 S
Malware CryptoWall 4.0 Check in_5 S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (effectwaytopay.com) S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (forkinverstpay.com) S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (marketcryptopartners.com) S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (partnersinvestpayto.com) S
Malware CryptoWall 4.0 Web Request to C & C Server S
Malware CryptoWall 4.0 Web Request to C & C Server_1 S
Malware CryptoWall 4.0 Web Request to C & C Server_2 S
Malware CryptoWall 4.0 Web Request to C & C Server_4 S
Malware CryptoWall 4.0 Web Request to Payment Server S
Malware CryptoWall 4.0 Web Request to Payment Server_1 S
Malware External IP Lookup Attempt To Wipmania S
Netsparker 2.3.x Remote Code Execution Vulnerability S
PCMan FTP Server 2.0.7 PUT Command Buffer Overflow Vulnerability S
up.time 7.5.0 Arbitrary File Disclose And Delete Vulnerability S
up.time 7.5.0 Superadmin Privilege Escalation Vulnerability S
WinRAR Settings Import Command Execution Vulnerability S
ZTE GPON F427 Authorization Bypass and Cleartext Password Storage Vulnerability S
ZTE GPON F427 Authorization Bypass and Cleartext Password Storage Vulnerability_1 S
ZTE ZXHN H108N 3.3.0_MU CWMP Configuration Disclosure Vulnerability S