Search

Traffic File Update - November 2016

This Traffic IQ Professional update for November 2016 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for November 2016

169 Application Exploits

FTP BolinTech DreamFTP Server 1.02 - 'RETR' Command Remote Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'ABOR' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'DIR' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'HOST' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'RENAME' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'RMD' Command Buffer Overflow S
FTP Freefloat FTP Server 1.0 - 'SITE ZONE' Command Buffer Overflow S
FTP KarjaSoft Sami FTP Server 2.0.2 - USERPASS Remote Buffer Overflow (SEH) S
FTP SmallFTPd 1.0.3 - 'mkd' Command Denial of Service S
HTTP Acoem 01dB CUBEDUO Smart Noise Monitor - Password Change S
HTTP Adobe Flash Player 23.0.0.162 - '.SWF' ConstantPool Critical Memory Corruption S
HTTP Advance MLM Script - SQL Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'image.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'inventory.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'otx.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'rss.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'security.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'siem.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'taxonomy.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'tickets.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - 'url.php' PHP Object Injection S
HTTP Alienvault OSSIMUSM 5.3.1 - SQL Injection S
HTTP Android - Binder Generic ASLR Leak S
HTTP ApPHP MicroBlog 1.0.2 - Cross-Site Request Forgery (Add New Author) (From Server) S
HTTP ApPHP MicroCMS CSRF Vulnerability (From Server) S
HTTP ApPHP MicroCMS CSRF Vulnerability (To Server) S
HTTP ApPHP MicroCMS Persistent Cross Site Scripting Vulnerability S
HTTP Bassmaster 1.5.1 - Batch Arbitrary JavaScript Injection Remote Code Execution (MSF) S
HTTP CherryTree 0.36.9 - Memory Corruption (PoC) S
HTTP Cisco Firepower Threat Management Console 6.0.1 - Remote Command Execution S
HTTP Cisco Webex Player T29.10 - '.ARF' Out-of-Bounds Memory Corruption S
HTTP Cisco Webex Player T29.10 - '.WRF' Use-After-Free Memory Corruption S
HTTP Colorful Blog Persistent Cross Site Scripting Vulnerability S
HTTP Colorful Blog Script admin.php CSRF Vulnerability (From Server) S
HTTP Colorful Blog Script admin.php CSRF Vulnerability (To Server) S
HTTP D-Link ADSL Router DSL-2730U2750U2750E - Remote File Disclosure S
HTTP DWebPro 8.4.2 - Remote Command Execution S
HTTP Event Calendar PHP admin.php SQL Injection Vulnerability S
HTTP Event Calendar PHP admin.php SQL Injection Vulnerability_1 S
HTTP Event Calendar PHP admin.php SQL Injection Vulnerability_2 S
HTTP Exagate WEBPack Management System phpinfo.php Information Disclosure Vulnerability S
HTTP Exagate WEBPack Management System SQL Injection Vulnerability S
HTTP Exagate WEBPack Management System SQL Injection Vulnerability_1 S
HTTP Fashion Shopping Cart SQL Injection Vulnerability S
HTTP i-Netsolution Entrepreneur Job Portal Script SQL Injection Vulnerability S
HTTP i-Netsolution Entrepreneur Job Portal Script SQL Injection Vulnerability_1 S
HTTP InfraPower Cross-Site Request Forgery Vulnerability (From Server) S
HTTP InfraPower Cross-Site Request Forgery Vulnerability (To Server) S
HTTP InvoicePlane 1.4.8 - Password Reset S
HTTP Just Dial Clone Script SQL Injection Vulnerability S
HTTP Just Dial Clone Script SQL Injection Vulnerability_1 S
HTTP MiCasaVerde VeraLite - Remote Code Execution S
HTTP Microsoft Internet Explorer 11.0.9600.18482 - Use After Free S
HTTP Microsoft Windows - GDI+ EMR_EXTTEXTOUTA and EMR_POLYTEXTOUTA Heap Based BO (MS16-097) S
HTTP Microsoft Word 2013 and 2016 - sprmSdyaTop Denial of Service (MS16-099) S
HTTP Miniblog CSRF (Add New Post) Vulnerability (From Server) S
HTTP Miniblog CSRF (Add New Post) Vulnerability (To Server) S
HTTP MSWindows-GDI+ DecodeCompressedRLEBitmap Invalid Pointer Arithmetic OOB Write (MS16-097) S
HTTP My Little Forum CSRF (Backup Disclosure) Vulnerability (From Server) S
HTTP My Little Forum CSRF (Backup Disclosure) Vulnerability (To Server) S
HTTP My Little Forum XSS Vulnerability (From Server) S
HTTP My Little Forum XSS Vulnerability (To Server) S
HTTP My Little Forum XSS Vulnerability_1 (From Server) S
HTTP My Little Forum XSS Vulnerability_1 (To Server) S
HTTP My Little Forum XSS Vulnerability_2 (From Server) S
HTTP My Little Forum XSS Vulnerability_2 (To Server) S
HTTP Navis Webaccess SQL Injection Vulnerability S
HTTP NetBilletterie php_info.php Information Disclosure Vulnerability S
HTTP NetBilletterie SQL Injection Vulnerability S
HTTP NetBilletterie SQL Injection Vulnerability_1 S
HTTP NetBilletterie SQL Injection Vulnerability_2 S
HTTP NetBilletterie SQL Injection Vulnerability_3 S
HTTP NetBilletterie SQL Injection Vulnerability_4 S
HTTP NetBilletterie SQL Injection Vulnerability_5 S
HTTP NetBilletterie SQL Injection Vulnerability_6 S
HTTP NetBilletterie SQL Injection Vulnerability_7 S
HTTP nodCMS Cross-Site Request Forgery Vulnerability (From Server) S
HTTP nodCMS Cross-Site Request Forgery Vulnerability (To Server) S
HTTP nodCMS Cross-Site Request Forgery Vulnerability_1 (From Server) S
HTTP nodCMS Cross-Site Request Forgery Vulnerability_1 (To Server) S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance Admin Password Reset CSRF S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance cgi_main transfer license Buffer Overflow S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance handle_daylightsaving.php RCE S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance Information Disclosure S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance transfer_license Command Execution S
HTTP NUUO NVRmini 2 NVRSolo ReadyNAS Surveillance __debugging_center_utils___.php RCE S
HTTP Open Upload CSRF Vulnerability (From Server) S
HTTP Open Upload CSRF Vulnerability (To Server) S
HTTP Open Upload CSRF Vulnerability_1 (From Server) S
HTTP Open Upload CSRF Vulnerability_1 (To Server) S
HTTP Palo Alto Networks PanOS appweb3 - Stack Buffer Overflow S
HTTP PHP Image Database administration.php XSS Vulnerability S
HTTP PHP Image Database administration.php XSS Vulnerability_1 S
HTTP PHP Image Database administration.php XSS Vulnerability_2 S
HTTP PHP Image Database administration.php XSS Vulnerability_3 S
HTTP PHP Image Database administration.php XSS Vulnerability_4 S
HTTP PHP Image Database administration.php XSS Vulnerability_5 S
HTTP PHP Image Database index.php XSS Vulnerability S
HTTP PHP NEWS (add Admin) CSRF Vulnerability (From Server) S
HTTP PHP NEWS (add Admin) CSRF Vulnerability (To Server) S
HTTP PHP Press Release Cross Site Request Forgery (From Server) S
HTTP PHP Press Release Cross Site Request Forgery (To Server) S
HTTP PHP Press Release Persistent Cross Site Scripting Vulnerability S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_1 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_10 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_11 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_12 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_2 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_3 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_4 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_5 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_6 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_7 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_8 S
HTTP PHP Telephone Directory Cross Site Scripting Vulnerability_9 S
HTTP PHPCollab CMS SQL Injection Vulnerability S
HTTP Picosafe Web Gui - Cross-Site Scripting S
HTTP Picosafe Web Gui - Local File Disclosure S
HTTP Picosafe Web Gui - Remote File Upload S
HTTP Pluck CMS Cross Site Request Forgery Vulnerability (From Server) S
HTTP Pluck CMS Cross Site Request Forgery Vulnerability (To Server) S
HTTP RealPlayer 18.1.5.705 - '.QCP' Crash (PoC) S
HTTP Redaxo Add Admin Cross-Site Request Forgery Vulnerability (From Server) S
HTTP Redaxo Add Admin Cross-Site Request Forgery Vulnerability (To Server) S
HTTP S9Y Serendipity Cross Site Scripting Vulnerability S
HTTP SAP Adaptive Server Enterprise 16 - Denial of Service S
HTTP Schoolhos CMS 2.29 - Remote Code Execution S
HTTP Schoolhos CMS 2.29 - SQL Injection S
HTTP ScriptCase 8.1.053 - 'ajax_cod_apls' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'filtroTexto' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'nrLinhas' SQL Injection (From Server) S
HTTP ScriptCase 8.1.053 - 'nrLinhas' SQL Injection (To Server) S
HTTP ScriptCase 8.1.053 - 'option' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'sql_script' Cross Site Scripting S
HTTP ScriptCase 8.1.053 - 'sql_script' Remote Code Execution S
HTTP ScriptCase 8.1.053 - Add Admin CSRF (From Server) S
HTTP ScriptCase 8.1.053 - Add Admin CSRF (To Server) S
HTTP ScriptCase 8.1.053 - Mysql Connect Creation Wizard CSRF (From Server) S
HTTP ScriptCase 8.1.053 - Mysql Connect Creation Wizard CSRF (To Server) S
HTTP ScriptCase 8.1.053 - User Account Enumeration-Token Bypass S
HTTP ShoreTel Connect ONSITE Blind SQL Injection Vulnerability S
HTTP Simple Blog PHP CSRF Vulnerability (From Server) S
HTTP Simple Blog PHP CSRF Vulnerability (To Server) S
HTTP Simple Blog PHP SQL Injection Vulnerability S
HTTP Simple Blog PHP SQL Injection Vulnerability_1 S
HTTP Simple Blog PHP SQL Injection Vulnerability_2 S
HTTP Simple Blog PHP SQL Injection Vulnerability_3 S
HTTP Simple PHP Blog Cross Site Request Forgery Vulnerability (From Server) S
HTTP Simple PHP Blog Cross Site Request Forgery Vulnerability (To Server) S
HTTP sNews Cross-Site Request Forgery Vulnerability (From Server) S
HTTP sNews Cross-Site Request Forgery Vulnerability (To Server) S
HTTP Student Information System (SIS) 0.1 - Authentication Bypass S
HTTP SunellSecurity NVR Camera - Denial of Service S
HTTP Sync Breeze Enterprise 8.9.24 - Buffer Overflow S
HTTP Thatware friend.php SQL Injection Vulnerability S
HTTP VOX Music Player 2.8.8 - '.pls' Denial of Service S
HTTP Witbe - Remote Code Execution S
HTTP WordPress Plugin ALO EasyMail NewsLetter CSRF Vulnerability (From Server) S
HTTP WordPress Plugin ALO EasyMail NewsLetter CSRF Vulnerability (To Server) S
HTTP WordPress Plugin Booking Calendar SQL Injection Vulnerability (From Server) S
HTTP WordPress Plugin Booking Calendar SQL Injection Vulnerability (To Server) S
HTTP WordPress Plugin Count per Day Persistent Cross Site Scripting Vulnerability S
HTTP WordPress Plugin Video Player SQL Injection Vulnerability (From Server) S
HTTP WordPress Plugin Video Player SQL Injection Vulnerability (To Server) S
HTTP Zenbership CSRF Vulnerability (From Server) S
HTTP Zenbership CSRF Vulnerability (To Server) S
HTTP Zenbership Persistent Cross Site Scripting Vulnerability S
UDP ISC BIND 9 - Denial of Service S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.