Search

Traffic File Update - November 2015

This Traffic IQ Professional update for November 2015 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for November 2015

165 Application Exploits

BisonWare BisonFTP Server 3.5 - Directory Traversal S
HTTP actiTIME 2015.2 - 'settings.do' Open Redirect (Percent Encoded) S
HTTP actiTIME 2015.2 - 'settings.do' Open Redirect S
HTTP actiTIME 2015.2 - HTTP Response Splitting (Percent Encoded) S
HTTP actiTIME 2015.2 - HTTP Response Splitting S
HTTP Adobe Flash IExternalizable.writeExternal - Type Confusion S
HTTP articleFR 3.0.7 Arbitrary File Read (Percent Encoded) S
HTTP articleFR 3.0.7 Arbitrary File Read S
HTTP ATutor 2.2 'asc' parameter PHP Code Injection (Percent Encoded) S
HTTP ATutor 2.2 'asc' parameter PHP Code Injection S
HTTP ATutor 2.2 'desc' parameter PHP Code Injection (Percent Encoded) S
HTTP ATutor 2.2 'desc' parameter PHP Code Injection S
HTTP ClipperCMS 1.3.0 - 'id' SQL Injection (Percent Encoded) S
HTTP ClipperCMS 1.3.0 - 'id' SQL Injection S
HTTP ClipperCMS 1.3.0 - 'newusername' SQL Injection S
HTTP D-Link Wireless Router CSRF Vulnerability (From Server) S
HTTP D-Link Wireless Router CSRF Vulnerability (To Server) S
HTTP DevExpress ASP.NET File Manager CVE-2014-2575 Directory Traversal S
HTTP Dream CMS CSRF Add Extension Vulnerability (From Server) S
HTTP Dream CMS CSRF Add Extension Vulnerability (To Server) S
HTTP Easy File Sharing Web Server 7.2 - Remote SEH Based Overflow S
HTTP eBay Magento CE 1.9.2.1 - Command Injection S
HTTP eBay Magento CE 1.9.2.1 - Unrestricted Cron Script Code Execution S
HTTP Endian Firewall Multiple Cross Site Scripting Vulnerability S
HTTP Endian Firewall Multiple Cross Site Scripting Vulnerability_1 S
HTTP Endian Firewall Multiple Cross Site Scripting Vulnerability_2 S
HTTP Foreman Smart-Proxy Remote Command Injection Vulnerability S
HTTP Google Android Libstagefright Multiple Memory Corruption S
HTTP Google Android Libstagefright Multiple Memory Corruption_1 S
HTTP Jenkins 1.633 - Unauthenticated Credential Recovery S
HTTP Joomla JNews (com_jnews) Component 8.5.1 - SQL Injection S
HTTP Joomla Real Estate Manager Component 3.7 - 'order_direction' SQL injection S
HTTP Joomla Real Estate Manager Component 3.7 - 'order_field' SQL injection S
HTTP Juniper Mobility Software 'aaa-wba_login.html' XSS Vulnerability S
HTTP K2 SmartForms BlackPearl SQL Injection S
HTTP ManageEngine ServiceDesk Plus 9.1 build 9110 - Path Traversal (Percent Encoded) S
HTTP ManageEngine ServiceDesk Plus 9.1 build 9110 - Path Traversal S
HTTP Mango Automation 2.6.0 CSRF Add Admin CVE-2015-6493 Vulnerability (SCADA) S
HTTP Mango Automation 2.6.0 CSRF CVE-2015-7904 Vulnerability (SCADA) S
HTTP Mango Automation CSRF CVE-2015-7901 Command Execution Vulnerability (SCADA) S
HTTP Mango Automation Debug Log View CVE-2015-7900 Vulnerability (SCADA) S
HTTP Mango Automation Debug Log View CVE-2015-7900 Vulnerability_1 (SCADA) S
HTTP Mango Automation Debug Log View CVE-2015-7900 Vulnerability_2 (SCADA) S
HTTP Mango Automation Remote XSS POST Injection CVE-2015-6494 Vulnerability (SCADA) S
HTTP Mango Automation User Enumeration CVE-2015-7902 Vulnerability (SCADA) S
HTTP Mango Automation User Enumeration CVE-2015-7902 Vulnerability_1 (SCADA) S
HTTP Microsoft Office 2007 wwlib.dll fcPlcfFldMom Uninitialized Heap Usage S
HTTP Netgear N300 Authentication Bypass Vulnerability S
HTTP Netgear Voice Gateway 2.3.0.23_2.3.23 - Command Injection S
HTTP NXFilter CSRF Vulnerability (From Server) S
HTTP NXFilter CSRF Vulnerability (To Server) S
HTTP NXFilter CSRF Vulnerability_1 (From Server) S
HTTP NXFilter CSRF Vulnerability_1 (To Server) S
HTTP NXFilter CSRF Vulnerability_2 (From Server) S
HTTP NXFilter CSRF Vulnerability_2 (To Server) S
HTTP NXFilter CSRF Vulnerability_3 (From Server) S
HTTP NXFilter CSRF Vulnerability_3 (To Server) S
HTTP NXFilter Multiple XSS Vulnerability S
HTTP NXFilter Multiple XSS Vulnerability_1 S
HTTP Oracle Supply Chain Products Suite XSS Vulnerability S
HTTP Oracle Supply Chain Products Suite XSS Vulnerability_1 S
HTTP Oxwall 1.7.4 - 'maintenance_text' CSRF Vulnerability (From Server) S
HTTP Oxwall 1.7.4 - 'maintenance_text' CSRF Vulnerability (To Server) S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_1 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_10 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_2 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_3 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_4 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_5 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_6 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_7 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_8 S
HTTP Perforce P4Web Multiple Cross Site Scripting Vulnerability_9 S
HTTP PHP Server Monitor 3.1.1- CSRF Privilege Escalation (From Server) S
HTTP PHP Server Monitor 3.1.1- CSRF Privilege Escalation (To Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability (From Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability (To Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_1 (From Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_1 (To Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_2 (From Server) S
HTTP PHP Server Monitor Multiple CSRF Vulnerability_2 (To Server) S
HTTP PHPfileNavigator XSS Vulnerability S
HTTP PHPfileNavigator XSS Vulnerability_1 S
HTTP PHPfileNavigator XSS Vulnerability_2 S
HTTP Pligg CMS 2.0.2 - 'comment' SQL Injection S
HTTP Pligg CMS 2.0.2 - 'comment_id' SQL Injection (Percent Encoded) S
HTTP Pligg CMS 2.0.2 - 'comment_id' SQL Injection S
HTTP Pligg CMS 2.0.2 - 'enabled' SQL Injection S
HTTP Pligg CMS 2.0.2 Arbitrary Code Execution Vulnerability S
HTTP ProjeQtor 4.5.2 Shell Upload Vulnerability S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'cat_id' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'copy_field' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'css' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'id' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'plisting' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'pshow' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'pwizard' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'text_search' SQL Injection S
HTTP Realtyna RPL Joomla Extension 8.9.2 - 'tip' SQL Injection S
HTTP Realtyna RPL Joomla Extension CSRF Vulnerability (From Server) S
HTTP Realtyna RPL Joomla Extension CSRF Vulnerability (To Server) S
HTTP Realtyna RPL Joomla Extension XSS Vulnerability S
HTTP Realtyna RPL Joomla Extension XSS Vulnerability_1 S
HTTP RealtyScript 4.0.2 - 'agent' SQL Injection S
HTTP RealtyScript 4.0.2 - 'u_id' SQL Injection (Percent Encoded) S
HTTP RealtyScript 4.0.2 - 'u_id' SQL Injection S
HTTP Subrion 3.X.X - Arbitrary File Download - File Disclosure S
HTTP Subrion 3.X.X - Arbitrary Plugins Installer S
HTTP Subrion 3.X.X - Reset Settings Access Vulnerability S
HTTP TestLink CSRF Vulnerability (From Server) S
HTTP TestLink CSRF Vulnerability (To Server) S
HTTP Th3 MMA mma.php Backdoor Arbitrary File Upload S
HTTP Tomabo MP4 Converter 3.10.12 - 3.11.12 (.m3u) Denial of service S
HTTP TOSHIBA e-Studio Change Admin Password CSRF (From Server) S
HTTP vBulletin 5.1.x - PreAuth 0day Remote Code Execution Exploit S
HTTP Visual Mining NetCharts Server CVE-2014-8516 Arbitrary File Upload S
HTTP WordPress Font 7.5 Path Traversal S
HTTP WordPress mTheme-Unus Local File Inclusion Vulnerability S
HTTP WordPress Pie Register 2.0.18 'invi_del_id' SQL Injection S
HTTP WordPress Pie Register 2.0.18 'select_invitation_code_bulk_option' SQL Injection S
HTTP WordPress Work The Flow Upload Vulnerability S
HTTP Xangati XSR And XNR 'gui_input_test.pl' Remote Command Execution S
HTTP ZCMS 1.1 - 'title' parameter XSS (Percent Encoded) S
HTTP ZCMS 1.1 - 'title' parameter XSS S
HTTP ZHONE S3.0.501 - 'GET' Stack Overflow S
HTTP ZHONE S3.0.501 - 'POST' Stack Overflow S
HTTP Zope Management Interface Cross Site Scripting Vulnerability (From Server) S
HTTP Zope Management Interface Cross Site Scripting Vulnerability (To Server) S
HTTP Zope Management Interface CSRF Vulnerability (From Server) S
HTTP Zope Management Interface CSRF Vulnerability (To Server) S
HTTP ZTE ZXHN H108N Unauthenticated Config Download Vulnerability S
HTTP zTree Cross Site Scripting Vulnerability S
HTTP ZyXEL PMG5318-B20A - OS Command Injection Vulnerability S
Malware CryptoWall 3.0 Web Request to C & C Server S
Malware CryptoWall 3.0 Web Request to C & C Server_1 S
Malware CryptoWall 3.0 Web Request to C & C Server_2 S
Malware CryptoWall 3.0 Web Request to C & C Server_3 S
Malware CryptoWall 3.0 Web Request to C & C Server_4 S
Malware CryptoWall 3.0 Web Request to C & C Server_5 S
Malware CryptoWall 4.0 Check in S
Malware CryptoWall 4.0 Check in_1 S
Malware CryptoWall 4.0 Check in_2 S
Malware CryptoWall 4.0 Check in_3 S
Malware CryptoWall 4.0 Check in_4 S
Malware CryptoWall 4.0 Check in_5 S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (effectwaytopay.com) S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (forkinverstpay.com) S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (marketcryptopartners.com) S
Malware CryptoWall 4.0 DNS Query for Malicious Domain (partnersinvestpayto.com) S
Malware CryptoWall 4.0 Web Request to C & C Server S
Malware CryptoWall 4.0 Web Request to C & C Server_1 S
Malware CryptoWall 4.0 Web Request to C & C Server_2 S
Malware CryptoWall 4.0 Web Request to C & C Server_4 S
Malware CryptoWall 4.0 Web Request to Payment Server S
Malware CryptoWall 4.0 Web Request to Payment Server_1 S
Malware External IP Lookup Attempt To Wipmania S
Netsparker 2.3.x Remote Code Execution Vulnerability S
PCMan FTP Server 2.0.7 PUT Command Buffer Overflow Vulnerability S
up.time 7.5.0 Arbitrary File Disclose And Delete Vulnerability S
up.time 7.5.0 Superadmin Privilege Escalation Vulnerability S
WinRAR Settings Import Command Execution Vulnerability S
ZTE GPON F427 Authorization Bypass and Cleartext Password Storage Vulnerability S
ZTE GPON F427 Authorization Bypass and Cleartext Password Storage Vulnerability_1 S
ZTE ZXHN H108N 3.3.0_MU CWMP Configuration Disclosure Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.