Search

Traffic File Update - March 2016

This Traffic IQ Professional update for March 2016 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for March 2016

200 Application Exploits

Adobe Digital Editions .pdf CVE-2016-0954 Memory Corruption Vulnerability S
Adobe Flash BitmapData.drawWithQuality Heap Overflow CVE-2016-0964 Vulnerability S
Adobe Flash Sound.loadPCMFromByteArray Dangling Pointer CVE-2016-0984 Vulnerability S
Adobe Flash TextField Constructor CVE-2016-0985 Type Confusion Vulnerability S
Avast Authenticode Parsing Memory Corruption Vulnerability S
Core FTP Server 1.2 Buffer Overflow Vulnerability S
Crouzet em4 soft 1.1.04 Integer Division By Zero Vulnerability S
HTTP Adobe Flash ATF Processing Heap Overflow CVE-2016-0971 Vulnerability S
HTTP Adobe Flash H264 File Stack Corruption CVE-2016-0967 Vulnerability S
HTTP Adobe Flash H264 File Stack Corruption CVE-2016-0967 Vulnerability_1 S
HTTP Adobe Flash H264 Parsing Out-of-Bounds Read Vulnerability S
HTTP Adobe Flash LoadVars.decode CVE-2016-0974 Use-After-Free Vulnerability S
HTTP Adobe Flash LoadVars.decode CVE-2016-0974 Use-After-Free Vulnerability_1 S
HTTP Adobe Flash Out-of-Bounds Image Read CVE-2016-0965 Vulnerability S
HTTP Adobe Flash Player and AIR CVE-2015-8644 Type Confusion RCE Vulnerability S
HTTP Adobe Flash Player and AIR CVE-2015-8644 Type Confusion RCE Vulnerability_1 S
HTTP Autonics DAQMaster 1.7.3 - DQP Parsing Buffer Overflow Code Execution S
HTTP BES12 12.4 Self-Service index.jsp Reflected XSS Vulnerability S
HTTP BES12 12.4 Self-Service loggedOut.jsp Reflected XSS Vulnerability S
HTTP BlackBerry Enterprise Service 12.4 Self-Service SQL Injection Vulnerability S
HTTP Bluethrust Clan Scripts v4 R17 CSRF and PHP Shell Upload Vulnerability S
HTTP Chamilo LMS Cross Site Scripting Vulnerability S
HTTP Crouzet em4 soft 1.1.04 - .pm4 Integer Division By Zero S
HTTP D-Link Cross Site Scripting Vulnerability S
HTTP D-Link Cross Site Scripting Vulnerability_1 S
HTTP D-Link Cross Site Scripting Vulnerability_2 S
HTTP D-Link Cross Site Scripting Vulnerability_3 S
HTTP Dell OpenManage Server Administrator Directory Traversal Vulnerability S
HTTP File Replication Pro 7.2.0 - 'configuration' Remote File Disclosure (Perc Enc) S
HTTP File Replication Pro 7.2.0 - 'configuration' Remote File Disclosure S
HTTP File Replication Pro 7.2.0 - 'properties' Remote File Disclosure S
HTTP File Replication Pro 7.2.0 - Directory Traversal S
HTTP Freeproxy Internet Suite 4.10 - Denial of Service S
HTTP Infor CRM 8.2.0.1136 - 'description' POST HTML Script Injection S
HTTP Infor CRM 8.2.0.1136 - 'description' PUT HTML Script Injection S
HTTP Infor CRM 8.2.0.1136 - 'location' POST HTML Script Injection S
HTTP Infor CRM 8.2.0.1136 - 'longnotes' POST HTML Script Injection S
HTTP InstantCoder 1.0 iOS - Directory Traversal S
HTTP JMX2 Email Tester - (save_email.php) Web Shell Upload S
HTTP JSN PowerAdmin Joomla! Extension XSS Vulnerability S
HTTP Kaltura Community Edition Arbitrary File Upload Vulnerability S
HTTP Kaltura Community Edition Server-Side Request Forgery Vulnerability S
HTTP Kaltura Community Edition Server-Side Request Forgery Vulnerability_1 S
HTTP Kaltura Community Edition Unauthorized File Read Vulnerability S
HTTP Kaltura Community Edition Unserialize Code Execution Vulnerability S
HTTP ManageEngine Firewall Analyzer 8.5 - 'addDevCrd' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'createAnomaly.nms' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'createProfile.do' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'customizeReportAction.nms' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'index2.do' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'ResolveDNSConfig.nms' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'runquery.do' SQL Injection S
HTTP ManageEngine Firewall Analyzer 8.5 - 'searchAction.do' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'uniquereport.do' XSS (Perc Enc) S
HTTP ManageEngine Firewall Analyzer 8.5 - 'uniquereport.do' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'userIPConfig.nms' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - 'viewListPageAction.nms' XSS S
HTTP ManageEngine Firewall Analyzer 8.5 - Change Admin CSRF S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_1 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_10 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_11 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_12 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_2 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_3 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_4 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_5 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_6 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_7 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_8 S
HTTP ManageEngine Firewall Analyzer XSS Vulnerability_9 S
HTTP ManageEngine Network Configuration Management Build 11000 - Privilege Escalation S
HTTP ManageEngine OPutils 8.0 - 'actionForm' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'actionForm' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - 'alertMsg' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'alertMsg' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - 'hostName' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'hostName' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - 'ipOrHost' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'ipOrHost' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - 'oidString' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'oidString' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - 'RouterName' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'RouterName' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - 'selectedSwitchTab' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'selectedSwitchTab' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - 'switchID' XSS (From Server) S
HTTP ManageEngine OPutils 8.0 - 'switchID' XSS (To Server) S
HTTP ManageEngine OPutils 8.0 - Access Control Vulnerability S
HTTP ManageEngine OPutils 8.0 - Privilege Escalation S
HTTP MS IE Memory Corruption (MS16-023) CVE-2016-0108 Vulnerability S
HTTP Network Scanner Version 4.0.0.0 - SEH Crash POC S
HTTP Netwrix Auditor 7.1.322.0 ActiveX Buffer Overflow Vulnerability S
HTTP Netwrix Auditor 7.1.322.0 ActiveX Buffer Overflow Vulnerability_1 S
HTTP OpenAM 9 10 Cross Site Scripting Vulnerability S
HTTP OpenAM Open Redirect Vulnerability S
HTTP OpenCms Cross Site Scripting Vulnerability S
HTTP perfact mpa Cross Site Request Forgery Vulnerability (From Server) S
HTTP perfact mpa Cross Site Request Forgery Vulnerability (To Server) S
HTTP perfact mpa Open Redirect Vulnerability S
HTTP Pulse CMS 4.5.2 Local File Inclusion Vulnerability S
HTTP Pulse CMS 4.5.2 Local File Inclusion Vulnerability_1 S
HTTP Redaxo CMS SQL Injection Vulnerability S
HTTP Redaxo CMS XSS Vulnerability S
HTTP RozBlog Weblog Service CSRF Vulnerability (From Server) S
HTTP RozBlog Weblog Service CSRF Vulnerability (To Server) S
HTTP RozBlog Weblog Service CSRF Vulnerability_1 (From Server) S
HTTP RozBlog Weblog Service CSRF Vulnerability_1 (To Server) S
HTTP RozBlog Weblog Service XSS Vulnerability (From Server) S
HTTP RozBlog Weblog Service XSS Vulnerability (To Server) S
HTTP SAP HANA hdbindexserver CVE-2015-7986 Memory Corruption Vulnerability S
HTTP SOLIDserver 5.0.4 - 'config_file' Local File Inclusion Vulnerability S
HTTP SOLIDserver 5.0.4 - 'report_filename' Local File Inclusion Vulnerability (Perc Enc) S
HTTP SOLIDserver 5.0.4 - 'report_filename' Local File Inclusion Vulnerability S
HTTP Solr 3.5.0 - Arbitrary Data Deletion S
HTTP Solr 3.5.0 - Information Disclosure S
HTTP Sophos UTM Cross Site Scripting Vulnerability S
HTTP STIMS Buffer - Buffer Overflow SEH - DoS S
HTTP STIMS Cutter - Buffer Overflow DoS S
HTTP TeamPass 2.1.24 CVE-2015-7563 CSRF Vulnerability S
HTTP Thomson Router CSRF Vulnerability (From Server) S
HTTP Thomson Router CSRF Vulnerability (To Server) S
HTTP Thomson Router XSS Vulnerability S
HTTP Thomson Router XSS Vulnerability_1 S
HTTP Thomson Router XSS Vulnerability_2 S
HTTP Thomson Router XSS Vulnerability_3 S
HTTP Thru Managed File Transfer Portal SQL Injection Vulnerability S
HTTP Timeclock Software 0.995 - 'period_id' SQL Injection S
HTTP Timeclock Software 0.995 - 'time_id' SQL Injection (Percent Encoded) S
HTTP Timeclock Software 0.995 - 'time_id' SQL Injection S
HTTP Timeclock Software 0.995 - 'type_id' SQL Injection S
HTTP Timeclock Software 0.995 - 'user_id' SQL Injection S
HTTP Tiny Tiny RSS SQL Injection Vulnerability (From Server) S
HTTP Tiny Tiny RSS SQL Injection Vulnerability (To Server) S
HTTP Ubiquiti Networks UniFi CSRF Vulnerability (From Server) S
HTTP Ubiquiti Networks UniFi CSRF Vulnerability (To Server) S
HTTP Viscomsoft Calendar Active-X 2.0 - 'daycaptionfont' Crash PoC S
HTTP Viscomsoft Calendar Active-X 2.0 - 'daytextfont' Crash PoC S
HTTP Viscomsoft Calendar Active-X 2.0 - 'month' Crash PoC S
HTTP Viscomsoft Calendar Active-X 2.0 - 'monthyearfont' Crash PoC S
HTTP Viscomsoft Calendar Active-X 2.0 - 'monthyearforecolor' Crash PoC S
HTTP Viscomsoft Calendar Active-X 2.0 - 'settext' Crash PoC S
HTTP VLC Media Player 2.2.1 - .mp4 Heap Memory Corruption S
HTTP WebSVN Cross Site Scripting Vulnerability S
HTTP WordPress Advanced Importer Cross Site Scripting Vulnerability S
HTTP Wordpress Booking Calendar Contact Form Plugin 1.1.23 - SQL injection S
HTTP WordPress Bulk Delete Plugin 5.5.3 - 'delete_pages_by_status' CSRF S
HTTP WordPress Bulk Delete Plugin 5.5.3 - 'delete_posts_by_post_type' CSRF S
HTTP WordPress Bulk Delete Plugin 5.5.3 - 'delete_users_by_meta' CSRF S
HTTP WordPress CP Polls Plugin 1.0.8 - 'cv_text_enter_valid_captcha' XSS S
HTTP WordPress CP Polls Plugin 1.0.8 - 'form_structure' XSS S
HTTP WordPress CP Polls Plugin 1.0.8 - 'poll_text_seeres' XSS S
HTTP WordPress CP Polls Plugin 1.0.8 - 'vs_text_submitbtn' XSS S
HTTP WordPress CSV Import Cross Site Scripting Vulnerability S
HTTP WordPress Import Woocommerce Cross Site Scripting Vulnerability S
HTTP WordPress More Fields Plugin CSRF Vulnerability (From Server) S
HTTP WordPress More Fields Plugin CSRF Vulnerability (To Server) S
HTTP WordPress More Fields Plugin CSRF Vulnerability_1 (From Server) S
HTTP WordPress More Fields Plugin CSRF Vulnerability_1 (To Server) S
HTTP WordPress Ocim MP3 Plugin SQL Injection Vulnerability S
HTTP Yeager Cross Site Scripting Vulnerability S
HTTP Yeager SQL Injection Vulnerability S
HTTP Yeager SQL Injection Vulnerability_1 S
HTTP Zimbra Mail CVE-2015-6541 Multiple CSRF Vulnerability S
innovaphone IP222 and IP232 Denial Of Service Vulnerability S
libquicktime 1.2.4 CVE-2016-2399 Integer Overflow Vulnerability S
Malware Web Request connected with PayPal Phishing (dashlinen.testing-domain-live.co.uk) S
Malware Web Request connected with PayPal Phishing (inclusivediversity.co.uk) S
Malware Web Request to Domain connected with Banload Trojan (jktdc.in) S
Malware Web Request to Domain connected with Banload Trojan (www.proascolcolombia.com) S
Malware Web Request to Domain connected with Dridex Trojan (backup.terra5llc.com) S
Malware Web Request to Domain connected with Locky Ransomware (afive.net) S
Malware Web Request to Domain connected with Locky Ransomware (avp-mech.ru) S
Malware Web Request to Domain connected with Locky Ransomware (killerjeff.free.fr) S
Malware Web Request to Domain connected with Locky Ransomware (premium34.tmweb.ru) S
Malware Web Request to Domain connected with Locky Ransomware (softworksbd.com) S
Malware Web Request to Domain connected with Locky Ransomware (uponor.otistores.com) S
Malware Web Request to Domain connected with Locky Ransomware (wechselkur.de) S
Malware Web Request to Domain connected with Locky Ransomware (www.bag-online.com) S
Malware Web Request to Domain connected with MasterCard Phishing (zt.tim-taxi.com) S
Malware Web Request to Domain connected with Teslacrypt Ransomware (grosirkecantikan.com) S
Malware Web Request to Domain connected with Teslacrypt Ransomware (holishit.in) S
Malware Web Request to Domain connected with Teslacrypt Ransomware (jeansowghbqq.com) S
Malware Web Request to Domain connected with Teslacrypt Ransomware (vtc360.com) S
Malware Web Request to Domain connected with the Windows Support Scam (gamma01.website) S
Malware Web Request to Domain connected with Trojan Activity (deleondeos.com) S
Malware Web Request to Domain connected with Trojan Activity (gov.f3322.net) S
Malware Web Request to Domain connected with Trojan Activity (izzy-cars.nl) S
Malware Web Request to Domain connected with Trojan Activity (lhs-mhs.org) S
Malware Web Request to Domain connected with Trojan Activity (marialorena.com.br) S
Malware Web Request to Domain connected with Trojan Activity (ohelloguyqq.com) S
Malware Web Request to Domain connected with Trojan Activity (reclamus.com) S
Malware Web Request to Domain connected with Trojan Activity (srv20.ru) S
Malware Web Request to Domain connected with Trojan Activity (stopmeagency.free.fr) S
Malware Web Request to Domain connected with Trojan Activity (www.cerquasas.it) S
Malware Web Request to Domain connected with Trojan Activity (www.gold-city.it) S
Nitro Pro and Nitro Reader Heap Memory Corruption Vulnerability S
Quick Tftp Server Pro 2.3 TFTP mode Remote Overflow Vulnerability S
XM Easy Personal FTP Server 5.8 - (HELP) Remote DoS Vulnerability S
Zortam Mp3 Media Studio 20.15 SEH Overflow DoS Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.