Traffic IQ Professional
Traffic File Update for November 2016
169 Application Exploits
FTP BolinTech DreamFTP Server 1.02 - 'RETR' Command Remote Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'ABOR' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'DIR' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'HOST' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'RENAME' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'RMD' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'SITE ZONE' Command Buffer Overflow S
FTP KarjaSoft Sami FTP Server 2.0.2 - USERPASS Remote Buffer Overflow (SEH) S
FTP SmallFTPd 1.0.3 - 'mkd' Command Denial of Service S
HTTP Acoem 01dB CUBEDUO Smart Noise Monitor - Password Change S
HTTP Adobe Flash Player 23.0.0.162 - '.SWF' ConstantPool Critical Memory Corruption S
HTTP Advance MLM Script - SQL Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'image.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'inventory.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'otx.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'rss.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'security.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'siem.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'taxonomy.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'tickets.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'url.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - SQL Injection S
HTTP Android - Binder Generic ASLR Leak S
HTTP ApPHP MicroBlog 1.0.2 - Cross-Site Request Forgery (Add New Author) (From Server) S
HTTP ApPHP MicroCMS CSRF Vulnerability (From Server) S
HTTP ApPHP MicroCMS CSRF Vulnerability (To Server) S
HTTP ApPHP MicroCMS Persistent Cross Site Scripting Vulnerability S
HTTP Bassmaster 1.5.1 - Batch Arbitrary JavaScript Injection Remote Code Execution (MSF) S
HTTP CherryTree 0.36.9 - Memory Corruption (PoC) S
HTTP Cisco Firepower Threat Management Console 6.0.1 - Remote Command Execution S
HTTP Cisco Webex Player T29.10 - '.ARF' Out-of-Bounds Memory Corruption S
HTTP Cisco Webex Player T29.10 - '.WRF' Use-After-Free Memory Corruption S
HTTP Colorful Blog Persistent Cross Site Scripting Vulnerability S
HTTP Colorful Blog Script admin.php CSRF Vulnerability (From Server) S
HTTP Colorful Blog Script admin.php CSRF Vulnerability (To Server) S
HTTP D-Link ADSL Router DSL-2730U2750U2750E - Remote File Disclosure S
HTTP DWebPro 8.4.2 - Remote Command Execution S
HTTP Event Calendar PHP admin.php SQL Injection Vulnerability S
HTTP Event Calendar PHP admin.php SQL Injection Vulnerability_1 S
HTTP Event Calendar PHP admin.php SQL Injection Vulnerability_2 S
HTTP Exagate WEBPack Management System phpinfo.php Information Disclosure Vulnerability S
HTTP Exagate WEBPack Management System SQL Injection Vulnerability S
HTTP Exagate WEBPack Management System SQL Injection Vulnerability_1 S
HTTP Fashion Shopping Cart SQL Injection Vulnerability S
HTTP i-Netsolution Entrepreneur Job Portal Script SQL Injection Vulnerability S
HTTP i-Netsolution Entrepreneur Job Portal Script SQL Injection Vulnerability_1 S
HTTP InfraPower Cross-Site Request Forgery Vulnerability (From Server) S
HTTP InfraPower Cross-Site Request Forgery Vulnerability (To Server) S
HTTP InvoicePlane 1.4.8 - Password Reset S
HTTP Just Dial Clone Script SQL Injection Vulnerability S
HTTP Just Dial Clone Script SQL Injection Vulnerability_1 S
HTTP MiCasaVerde VeraLite - Remote Code Execution S
HTTP Microsoft Internet Explorer 11.0.9600.18482 - Use After Free S
HTTP Microsoft Windows - GDI+ EMR_EXTTEXTOUTA and EMR_POLYTEXTOUTA Heap Based BO (MS16-097) S
HTTP Microsoft Word 2013 and 2016 - sprmSdyaTop Denial of Service (MS16-099) S
HTTP Miniblog CSRF (Add New Post) Vulnerability (From Server) S
HTTP Miniblog CSRF (Add New Post) Vulnerability (To Server) S
HTTP MSWindows-GDI+ DecodeCompressedRLEBitmap Invalid Pointer Arithmetic OOB Write (MS16-097) S
HTTP My Little Forum CSRF (Backup Disclosure) Vulnerability (From Server) S
HTTP My Little Forum CSRF (Backup Disclosure) Vulnerability (To Server) S
HTTP My Little Forum XSS Vulnerability (From Server) S
HTTP My Little Forum XSS Vulnerability (To Server) S
HTTP My Little Forum XSS Vulnerability_1 (From Server) S
HTTP My Little Forum XSS Vulnerability_1 (To Server) S
HTTP My Little Forum XSS Vulnerability_2 (From Server) S
HTTP My Little Forum XSS Vulnerability_2 (To Server) S
HTTP Navis Webaccess SQL Injection Vulnerability S
HTTP NetBilletterie php_info.php Information Disclosure Vulnerability S
HTTP NetBilletterie SQL Injection Vulnerability S
HTTP NetBilletterie SQL Injection Vulnerability_1 S
HTTP NetBilletterie SQL Injection Vulnerability_2 S
HTTP NetBilletterie SQL Injection Vulnerability_3 S
HTTP NetBilletterie SQL Injection Vulnerability_4 S
HTTP NetBilletterie SQL Injection Vulnerability_5 S
HTTP NetBilletterie SQL Injection Vulnerability_6 S
HTTP NetBilletterie SQL Injection Vulnerability_7 S
HTTP nodCMS Cross-Site Request Forgery Vulnerability (From Server) S
HTTP nodCMS Cross-Site Request Forgery Vulnerability (To Server) S
HTTP nodCMS Cross-Site Request Forgery Vulnerability_1 (From Server) S
HTTP nodCMS Cross-Site Request Forgery Vulnerability_1 (To Server) S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance Admin Password Reset CSRF S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance cgi_main transfer license Buffer Overflow S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance handle_daylightsaving.php RCE S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance Information Disclosure S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance transfer_license Command Execution S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance __debugging_center_utils___.php RCE S
HTTP Open Upload CSRF Vulnerability (From Server) S
HTTP Open Upload CSRF Vulnerability (To Server) S
HTTP Open Upload CSRF Vulnerability_1 (From Server) S
HTTP Open Upload CSRF Vulnerability_1 (To Server) S
HTTP Palo Alto Networks PanOS appweb3 - Stack Buffer Overflow S
HTTP PHP Image Database administration.php XSS Vulnerability S
HTTP PHP Image Database administration.php XSS Vulnerability_1 S
HTTP PHP Image Database administration.php XSS Vulnerability_2 S
HTTP PHP Image Database administration.php XSS Vulnerability_3 S
HTTP PHP Image Database administration.php XSS Vulnerability_4 S
HTTP PHP Image Database administration.php XSS Vulnerability_5 S
HTTP PHP Image Database index.php XSS Vulnerability S
HTTP PHP NEWS (add Admin) CSRF Vulnerability (From Server) S
HTTP PHP NEWS (add Admin) CSRF Vulnerability (To Server) S
HTTP PHP Press Release Cross Site Request Forgery (From Server) S
HTTP PHP Press Release Cross Site Request Forgery (To Server) S
HTTP PHP Press Release Persistent Cross Site Scripting Vulnerability S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_1 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_10 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_11 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_12 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_2 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_3 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_4 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_5 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_6 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_7 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_8 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_9 S
HTTP PHPCollab CMS SQL Injection Vulnerability S
HTTP Picosafe Web Gui - Cross-Site Scripting S
HTTP Picosafe Web Gui - Local File Disclosure S
HTTP Picosafe Web Gui - Remote File Upload S
HTTP Pluck CMS Cross Site Request Forgery Vulnerability (From Server) S
HTTP Pluck CMS Cross Site Request Forgery Vulnerability (To Server) S
HTTP RealPlayer 18.1.5.705 - '.QCP' Crash (PoC) S
HTTP Redaxo Add Admin Cross-Site Request Forgery Vulnerability (From Server) S
HTTP Redaxo Add Admin Cross-Site Request Forgery Vulnerability (To Server) S
HTTP S9Y Serendipity Cross Site Scripting Vulnerability S
HTTP SAP Adaptive Server Enterprise 16 - Denial of Service S
HTTP Schoolhos CMS 2.29 - Remote Code Execution S
HTTP Schoolhos CMS 2.29 - SQL Injection S
HTTP ScriptCase 8.1.053 - 'ajax_cod_apls' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'filtroTexto' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'nrLinhas' SQL Injection (From Server) S
HTTP ScriptCase 8.1.053 - 'nrLinhas' SQL Injection (To Server) S
HTTP ScriptCase 8.1.053 - 'option' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'sql_script' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'sql_script' Remote Code Execution S
HTTP ScriptCase 8.1.053 - Add Admin CSRF (From Server) S
HTTP ScriptCase 8.1.053 - Add Admin CSRF (To Server) S
HTTP ScriptCase 8.1.053 - Mysql Connect Creation Wizard CSRF (From Server) S
HTTP ScriptCase 8.1.053 - Mysql Connect Creation Wizard CSRF (To Server) S
HTTP ScriptCase 8.1.053 - User Account Enumeration-Token Bypass S
HTTP ShoreTel Connect ONSITE Blind SQL Injection Vulnerability S
HTTP Simple Blog PHP CSRF Vulnerability (From Server) S
HTTP Simple Blog PHP CSRF Vulnerability (To Server) S
HTTP Simple Blog PHP SQL Injection Vulnerability S
HTTP Simple Blog PHP SQL Injection Vulnerability_1 S
HTTP Simple Blog PHP SQL Injection Vulnerability_2 S
HTTP Simple Blog PHP SQL Injection Vulnerability_3 S
HTTP Simple PHP Blog Cross Site Request Forgery Vulnerability (From Server) S
HTTP Simple PHP Blog Cross Site Request Forgery Vulnerability (To Server) S
HTTP sNews Cross-Site Request Forgery Vulnerability (From Server) S
HTTP sNews Cross-Site Request Forgery Vulnerability (To Server) S
HTTP Student Information System (SIS) 0.1 - Authentication Bypass S
HTTP SunellSecurity NVR Camera - Denial of Service S
HTTP Sync Breeze Enterprise 8.9.24 - Buffer Overflow S
HTTP Thatware friend.php SQL Injection Vulnerability S
HTTP VOX Music Player 2.8.8 - '.pls' Denial of Service S
HTTP Witbe - Remote Code Execution S
HTTP WordPress Plugin ALO EasyMail NewsLetter CSRF Vulnerability (From Server) S
HTTP WordPress Plugin ALO EasyMail NewsLetter CSRF Vulnerability (To Server) S
HTTP WordPress Plugin Booking Calendar SQL Injection Vulnerability (From Server) S
HTTP WordPress Plugin Booking Calendar SQL Injection Vulnerability (To Server) S
HTTP WordPress Plugin Count per Day Persistent Cross Site Scripting Vulnerability S
HTTP WordPress Plugin Video Player SQL Injection Vulnerability (From Server) S
HTTP WordPress Plugin Video Player SQL Injection Vulnerability (To Server) S
HTTP Zenbership CSRF Vulnerability (From Server) S
HTTP Zenbership CSRF Vulnerability (To Server) S
HTTP Zenbership Persistent Cross Site Scripting Vulnerability S
UDP ISC BIND 9 - Denial of Service S