Search

Traffic File Update - July 2019

This Traffic IQ Professional update for July 2019 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for July 2019

181 Application Exploits

FTP PCMan FTP Server 2 ALLO Buffer Overflow S
HTTP Airbnb Clone Script 'catid' SQL Injection Vuln S
HTTP Airbnb Clone Script 'hosting_id' SQL Injection Vuln S
HTTP Airbnb Clone Script 'id' SQL Injection Vuln S
HTTP Airbnb Clone Script 'pt' SQL Injection Vuln S
HTTP Airbnb Clone Script 'val' SQL Injection Vuln S
HTTP Apache Tomcat CGIServlet enableCmdLineArguments Remote Code Execution S
HTTP ArangoDB Community Edition 'name' Cross-Site Scripting Vuln S
HTTP ArangoDB Community Edition 'name' Cross-Site Scripting Vuln_1 S
HTTP ArangoDB Community Edition 'user' Cross-Site Scripting Vuln S
HTTP ArangoDB Community Edition 'user' Cross-Site Scripting Vuln_1 S
HTTP AZADMIN CMS Of HIDEA 1.0 SQL Injection S
HTTP BlogEngine.NET 3.3.6 3.3.7 path Directory Traversal S
HTTP Centreon 19.04 Remote Code Execution S
HTTP Cisco Data Center Network Manager 11.1(1) - Arbitrary File Download S
HTTP Cisco Data Center Network Manager 11.1(1) - Arbitrary File Upload S
HTTP Cisco Data Center Network Manager 11.1(1) - Information Disclosure S
HTTP Cisco Wireless Controller 3.6.10E Cross Site Request Forgery (From Server) S
HTTP Cisco Wireless Controller 3.6.10E Cross Site Request Forgery (To Server) S
HTTP Citrix SD-WAN Appliance 10.2.2 Authentication Bypass S
HTTP Citrix SD-WAN Appliance 10.2.2 Remote Command Execution S
HTTP CiuisCRM 'eventType' SQL Injection Vuln S
HTTP CyberPanel 1.8.4 Cross Site Request Forgery (From Server) S
HTTP CyberPanel 1.8.4 Cross Site Request Forgery (To Server) S
HTTP D-Link Administrative Password Disclosure S
HTTP EA Origin Remote Code Execution S
HTTP FaceSentry Access Control System 'msg' Cross-Site Scripting Vuln S
HTTP FaceSentry Access Control System 6.4.8 Authentication Credential Disclosure S
HTTP FaceSentry Access Control System 6.4.8 Remote Command Injection S
HTTP FaceSentry Access Control System 6.4.8 Remote Root S
HTTP FANUC Robotics Virtual Robot Controller 8.23 Buffer Overflow S
HTTP Firefox 67.0.4 Denial Of Service S
HTTP FlightPath Local File Inclusion S
HTTP FortiCam FCM-MB40 Code Execution S
HTTP Fortinet FCM-MB40 CSRF Remote Command Execution S
HTTP fuelCMS 1.4.1 Remote Code Execution S
HTTP GrandNode 4.40 Path Traversal File Download S
HTTP Huawei HG530 Reboot Authentication Bypass S
HTTP Huawei HG530 Restore Authentication Bypass S
HTTP Inout Article Base CMS 'u' SQL Injection Vuln S
HTTP Inout EasyRooms 'guests' SQL Injection Vuln S
HTTP Inout EasyRooms 'location' SQL Injection Vuln S
HTTP Inout EasyRooms 'numguest' SQL Injection Vuln S
HTTP Inout EasyRooms 'property1' SQL Injection Vuln S
HTTP Jettweb Hazir Rent A Car Scripti 'id' SQL Injection Vuln S
HTTP Jettweb Hazir Rent A Car Scripti 'ozellikdil' SQL Injection Vuln S
HTTP Jettweb Hazir Rent A Car Scripti 'tur' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Haber Sitesi Scripti 'cid' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Haber Sitesi Scripti 'gallery_id' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Haber Sitesi Scripti 'kelime' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Haber Sitesi Scripti 'option' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Haber Sitesi Scripti 'poll' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Haber Sitesi Scripti 'q' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Haber Sitesi Scripti 'videoid' SQL Injection Vuln S
HTTP Jettweb Php Hazir Ilan Sitesi Scripti 'kat' SQL Injection Vuln S
HTTP Jettweb PHP Hazir Rent A Car Sitesi Scripti 'arac_kategori_id' SQL Injection Vuln S
HTTP Karenderia CMS 5.1 Content Injection S
HTTP Karenderia CMS 5.1 Local File Inclusion S
HTTP Karenderia Multiple Restaurant System 'category' SQL Injection Vuln S
HTTP Karenderia Multiple Restaurant System 'street-name' SQL Injection Vuln S
HTTP Koha Library Software 18.1106000 Open Redirection S
HTTP Matri4Web Matrimony Website Script 'cboCountry' SQL Injection Vuln S
HTTP Matri4Web Matrimony Website Script 'Fage' SQL Injection Vuln S
HTTP Matri4Web Matrimony Website Script 'religion' SQL Injection Vuln S
HTTP Matri4Web Matrimony Website Script 'religion' SQL Injection Vuln_1 S
HTTP Matri4Web Matrimony Website Script 'txtGender' SQL Injection Vuln S
HTTP MyT Project Management 'username' Cross-Site Scripting Vuln (From Server) S
HTTP MyT Project Management 'username' Cross-Site Scripting Vuln (To Server) S
HTTP Nagios XI Magpie_debug.php Root Remote Code Execution S
HTTP Netartmedia 'Email' SQL Injection Vuln S
HTTP Netartmedia 'features[]' SQL Injection Vuln S
HTTP Netartmedia Real Estate Portal 'user_email' SQL Injection Vuln S
HTTP Netartmedia Vlog System 'email' SQL Injection Vuln S
HTTP Netgear WiFi Router JWNR2010v5 R6080 - 'currentsetting.htm' Information Disclosure S
HTTP Netgear WiFi Router JWNR2010v5 R6080 - 'rootDesc.xml' Information Disclosure S
HTTP Netgear WiFi Router JWNR2010v5 R6080 - Security Question Bypass S
HTTP NewJobPortal 'job_submit' SQL Injection Vuln S
HTTP Novismart CMS 'Referer' SQL Injection S
HTTP Ovidentia 'Address' Cross-Site Scripting Vuln S
HTTP Ovidentia 'All' Cross-Site Scripting Vuln S
HTTP Ovidentia 'All' Cross-Site Scripting Vuln_1 S
HTTP Ovidentia 'Description' Cross-Site Scripting Vuln S
HTTP Ovidentia 'Description' Cross-Site Scripting Vuln_1 S
HTTP Ovidentia 'Libellé du champ' Cross-Site Scripting Vuln S
HTTP Ovidentia 'Libellé du champ' Cross-Site Scripting Vuln_1 S
HTTP Ovidentia 'Libellé du champ' Cross-Site Scripting Vuln_2 S
HTTP Ovidentia 'Libellé du champ' Cross-Site Scripting Vuln_3 S
HTTP Ovidentia 'Nom' Cross-Site Scripting Vuln S
HTTP Ovidentia 'Nom' Cross-Site Scripting Vuln_1 S
HTTP Ovidentia 'Nom' Cross-Site Scripting Vuln_2 S
HTTP Ovidentia 'Notes' Cross-Site Scripting Vuln S
HTTP Ovidentia 8.4.3 SQL Injection S
HTTP phpFK 'user' Cross-Site Scripting Vuln S
HTTP Pie Register plugin for WordPress 'wp-lang' Cross-Site Scripting Vuln S
HTTP PowerPanel Business Edition - Cross-Site Scripting S
HTTP PowerPanel Business Edition 3.4.0 Cross Site Request Forgery (From Server) S
HTTP PowerPanel Business Edition 3.4.0 Cross Site Request Forgery (To Server) S
HTTP Premier Ilan Scripti 'kiralik-urunler-kategorino-6183.html' SQL Injection Vuln S
HTTP Prosentient Carpool Web App 'find.php' SQL Injection Vuln S
HTTP qdPM 9.1 - 'search[keywords]' Cross Site Scripting S
HTTP qdPM 9.1 - 'type' Cross Site Scripting S
HTTP REDDOXX Appliance - 'GetLicense' Information Disclosure S
HTTP REDDOXX Appliance - 'GetRealmList' Information Disclosure S
HTTP Sahi Pro 8.0.0 - Remote Command Execution S
HTTP Sahi Pro 8.x Directory Traversal S
HTTP Sahi Pro 8.x Information Disclosure S
HTTP SAPIDO RB-1732 Remote Command Execution S
HTTP SeedDMS Remote Command Execution S
HTTP Shopware 5.5.6 - 'load' Cross Site Scripting S
HTTP Shopware 5.5.6 - 'Login' Cross Site Scripting S
HTTP Simple Job Script 'app_id' SQL Injection Vuln S
HTTP Simple Job Script 'employerid' SQL Injection Vuln S
HTTP Simple Job Script 'job_id' SQL Injection Vuln S
HTTP Simple Job Script 'job_type_value[]' Cross-Site Scripting Vuln S
HTTP Simple Job Script 'landing_location' SQL Injection Vuln S
HTTP Smoothwall Express 'HOSTNAME' Cross-Site Scripting Vuln_2 S
HTTP Smoothwall Express 'KEYMAP' Cross-Site Scripting Vuln S
HTTP Smoothwall Express 'OPENNESS' Cross-Site Scripting Vuln S
HTTP Smoothwall Express 'PULSE_DIAL' Cross-Site Scripting Vuln S
HTTP Smoothwall Express 'REDIRECT_PAGE' Cross-Site Scripting Vuln S
HTTP Smoothwall Express 'TIMEOUT' Cross-Site Scripting Vuln S
HTTP Smoothwall Express 'TONE_DIAL' Cross-Site Scripting Vuln S
HTTP SNMPc Enterprise Edition 9 10 Mapping Filename Buffer Overflow S
HTTP Symantec DLP 15.5 MP1 Cross Site Scripting S
HTTP TheCarProject 'man_id' SQL Injection Vuln S
HTTP TheCarProject 'man_id' SQL Injection Vuln_1 S
HTTP TL-WR720N 150Mbps Wireless N Router - Change Wifi Password CSRF S
HTTP TL-WR720N 150Mbps Wireless N Router - Portforwarding CSRF S
HTTP TP-Link TL-WR940N TL-WR941ND Cross Site Request Forgery S
HTTP Trend Micro Deep Discovery Inspector IDS - Security Bypass S
HTTP uHotelBooking System 'system_page' SQL Injection Vuln S
HTTP Varient 'user_id' SQL Injection Vuln S
HTTP Web Ofisi E-Ticaret 'a' SQL Injection Vuln S
HTTP Web Ofisi Emlak 'ara' SQL Injection Vuln S
HTTP Web Ofisi Emlak 'emlak_durumu' SQL Injection Vuln S
HTTP Web Ofisi Emlak 'emlak_tipi' SQL Injection Vuln S
HTTP Web Ofisi Emlak 'il' SQL Injection Vuln S
HTTP Web Ofisi Emlak 'ilce' SQL Injection Vuln S
HTTP Web Ofisi Emlak 'kelime' SQL Injection Vuln S
HTTP Web Ofisi Emlak 'semt' SQL Injection Vuln S
HTTP Web Ofisi Firma 'oz[]' SQL Injection Vuln S
HTTP Web Ofisi Firma Rehberi 'il' SQL Injection Vuln S
HTTP Web Ofisi Firma Rehberi 'kat' SQL Injection Vuln S
HTTP Web Ofisi Firma Rehberi 'kelime' SQL Injection Vuln S
HTTP Web Ofisi Platinum E-Ticaret 'q' SQL Injection Vuln S
HTTP Web Ofisi Rent A Car 'kategori[]' SQL Injection Vuln S
HTTP Web Ofisi Rent A Car 'klima[]' SQL Injection Vuln S
HTTP Web Ofisi Rent A Car 'vites[]' SQL Injection Vuln S
HTTP Web Ofisi Rent A Car 'yakit[]' SQL Injection Vuln S
HTTP WebERP 4.15 - SQL Injection S
HTTP WebLord WL-Nuke Coppermine for PHP-Nuke 'album' SQL Injection Vuln S
HTTP WordPress Database Backup Remote Command Execution S
HTTP WordPress Like Button 1.6.0 Authentication Bypass S
HTTP WordPress lqcPlugin-regiePublicites 1.0 Open Redirection S
HTTP WordPress Memphis Documents Library 3.9.19 CSRF (From Server) S
HTTP WordPress Memphis Documents Library 3.9.19 CSRF (To Server) S
HTTP WordPress Nya-Comment-DoFollow 1.0 Open Redirection S
HTTP WordPress OneSignal 'subdomain' Cross-Site Scripting Vuln (From Server) S
HTTP WordPress OneSignal 'subdomain' Cross-Site Scripting Vuln (To Server) S
HTTP WordPress PHPL 1.0 Open Redirection S
HTTP WordPress Simple Membership 3.8.4 Cross Site Request Forgery (From Server) S
HTTP WordPress Simple Membership 3.8.4 Cross Site Request Forgery (To Server) S
HTTP WordPress Tigin 1.0.5 Open Redirection S
HTTP WordPress WP Fastest Cache 0.8.9.0 Arbitrary File Deletion S
HTTP WordPress WPAds 1.0 Open Redirection S
HTTP WordPress Xunjin 4.6 Open Redirection S
HTTP WorkSuite PRM 'password' SQL Injection Vuln S
HTTP XooGallery 'cat.php' SQL Injection Vuln S
HTTP XooGallery 'gal.php' SQL Injection Vuln S
HTTP XooGallery 'photo.php' SQL Injection Vuln S
HTTP Xymon useradm Command Execution S
HTTP Yahei-PHP Prober 0.4.7 HTML Injection S
HTTP ZoneMinder 1.32.3 - Cross-Site Scripting S
HTTP Zurmo 3.2.6 - 'leads' Code Evaluation S
HTTP Zurmo 3.2.6 - 'opportunities' Code Evaluation S
HTTP Zurmo 3.2.6 Open Redirection S
HTTP Zyxel VMG3312-B10B 'login-page.cgi' CSRF Vuln (From Server) S
HTTP Zyxel VMG3312-B10B 'login-page.cgi' CSRF Vuln (To Server) S
HTTP zzzphp CMS 1.6.1 - Cross-Site Request Forgery (From Server) S
HTTP zzzphp CMS 1.6.1 - Cross-Site Request Forgery (To Server) S
MAPLE Computer WBT SNMP Administrator 2.0.195.15 Buffer Overflow S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.