Search

Traffic File Update - August 2020

This Traffic IQ Professional update for August 2020 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for August 2020

154 Application Exploits

CA Unified Infrastructure Management Nimsoft 7.80 Buffer Overflow S
CloudMe 1.11.2 SEH Buffer Overflow S
HTTP ACTi NVR3 Standard Professional Server 3.0.12.42 Denial Of Service S
HTTP All-Dynamics Software Digital Signage System 2.0.2 'Add Admin' (From Server) CSRF S
HTTP All-Dynamics Software Digital Signage System 2.0.2 'Add Admin' (To Server) CSRF S
HTTP All-Dynamics Software Digital Signage System 2.0.2 'New User' (From Server) CSRF S
HTTP All-Dynamics Software Digital Signage System 2.0.2 'New User' (To Server) CSRF S
HTTP All-Dynamics Software Digital Signage System 2.0.2 Session Fixation S
HTTP Apache OFBiz XML-RPC Java Deserialization S
HTTP Artica Proxy 4.3.0 Authentication Bypass S
HTTP ATutor 2.2.4 Directory Traversal Remote Code Execution S
HTTP Bludit 3.9.2 Authentication Bruteforce Mitigation Bypass S
HTTP Car Rental Management System 1.0 'message_admin.php' Cross-Site Scripting Vuln S
HTTP Car Rental Management System 1.0 Remote Code Execution S
HTTP Car Rental Script 'id' SQL Injection Vuln S
HTTP Car Rental Script 'message_admin.php' Cross-Site Scripting Vuln (From Server) S
HTTP Car Rental Script 'message_admin.php' Cross-Site Scripting Vuln (To Server) S
HTTP Chrome NewFixedArray Missing Array Size Check S
HTTP Cisco 7937G - DoS Reset Attack S
HTTP Cisco 7937G - Privilege Escalation S
HTTP Citrix XenMobile Server 10.8 XML Injection S
HTTP CMS Made Simple 2.2.14 Arbitrary File Upload Vuln (From Server) S
HTTP CMS Made Simple 2.2.14 Arbitrary File Upload Vuln (To Server) S
HTTP CMS Made Simple 2.2.14 Arbitrary File Upload Vuln_1 (From Server) S
HTTP CMS Made Simple 2.2.14 Arbitrary File Upload Vuln_1 (To Server) S
HTTP D-Link Central WiFi Manager CWM(100) Remote Code Execution S
HTTP Daily Expenses Management System 1.0 'add-expense.php' SQL Inj Vuln_1 (From Server) S
HTTP Daily Expenses Management System 1.0 'add-expense.php' SQL Inj Vuln_1 (To Server) S
HTTP Daily Expenses Management System 1.0 'add-expense.php' SQL Injection Vuln (From Server) S
HTTP Daily Expenses Management System 1.0 'add-expense.php' SQL Injection Vuln (To Server) S
HTTP Daily Expenses Management System 1.0 'datewise-reports.php' SQL Inj Vuln (From Server) S
HTTP Daily Expenses Management System 1.0 'datewise-reports.php' SQL Inj Vuln (To Server) S
HTTP Daily Expenses Management System 1.0 'datewise-reports.php' SQL Inj Vuln_1 (From Server) S
HTTP Daily Expenses Management System 1.0 'datewise-reports.php' SQL Inj Vuln_1 (To Server) S
HTTP Daily Expenses Management System 1.0 'index.php' SQL Injection Vuln (From Server) S
HTTP Daily Expenses Management System 1.0 'index.php' SQL Injection Vuln (To Server) S
HTTP Daily Expenses Management System 1.0 'reports-detailed.php' SQL Inj Vuln (From Server) S
HTTP Daily Expenses Management System 1.0 'reports-detailed.php' SQL Inj Vuln (To Server) S
HTTP Daily Expenses Management System 1.0 'reports-detailed.php' SQL Inj Vuln_1 (From Server) S
HTTP Daily Expenses Management System 1.0 'reports-detailed.php' SQL Inj Vuln_1 (To Server) S
HTTP Daily Expenses Management System 1.0 'user-profile.php' SQL Injection Vuln (From Server) S
HTTP Daily Expenses Management System 1.0 'user-profile.php' SQL Injection Vuln (To Server) S
HTTP Daily Expenses Management System 1.0 'yearwise-reports.php' SQL Inj Vuln (From Server) S
HTTP Daily Expenses Management System 1.0 'yearwise-reports.php' SQL Inj Vuln (To Server) S
HTTP Daily Expenses Management System 1.0 'yearwise-reports.php' SQL Inj Vuln_1 (From Server) S
HTTP Daily Expenses Management System 1.0 'yearwise-reports.php' SQL Inj Vuln_1 (To Server) S
HTTP Daily Expenses Management System 1.0 SQL Injection S
HTTP Daily Tracker System 1.0 'costitem' Cross-Site Scripting Vuln (From Server) S
HTTP Daily Tracker System 1.0 'costitem' Cross-Site Scripting Vuln (To Server) S
HTTP Daily Tracker System 1.0 'fullname' Cross-Site Scripting Vuln (From Server) S
HTTP Daily Tracker System 1.0 'fullname' Cross-Site Scripting Vuln (To Server) S
HTTP Daily Tracker System 1.0 'item' Cross-Site Scripting Vuln (From Server) S
HTTP Daily Tracker System 1.0 'item' Cross-Site Scripting Vuln (To Server) S
HTTP Daylight Studio Fuel CMS 'col' SQL Injection Vuln S
HTTP Documalis Free PDF Editor 5.7.2.26 Scanner 5.7.2.122 Buffer Overflow S
HTTP Eibiz i-Media Server Digital Signage 3.8.0 Authentication Bypass S
HTTP Eibiz i-Media Server Digital Signage 3.8.0 Configuration Disclosure S
HTTP Eibiz i-Media Server Digital Signage 3.8.0 File Path Traversal S
HTTP Eibiz i-Media Server Digital Signage 3.8.0 Remote Privilege Escalation S
HTTP flatCore CMS 1.5.5 'page_content' Cross Site Scripting S
HTTP flatCore CMS 1.5.5 'page_extracontent' Cross Site Scripting S
HTTP flatCore CMS 1.5.5 'page_linkname' Cross Site Scripting S
HTTP flatCore CMS 1.5.5 'page_title' Cross Site Scripting S
HTTP flatCore CMS 1.5.5 'prefs_pagename' Cross Site Scripting S
HTTP flatCore CMS 1.5.5 'prefs_pagesubtitle' Cross Site Scripting S
HTTP flatCore CMS 1.5.5 'prefs_pagetitle' Cross Site Scripting S
HTTP Gantt-Chart For Jira 5.5.3 Missing Privilege Check S
HTTP Gantt-Chart For Jira 5.5.4 Cross Site Scripting S
HTTP Geutebruck testaction.cgi Remote Command Execution S
HTTP House Rental 1.0 SQL Injection S
HTTP Mara CMS 7.5 Cross Site Scripting S
HTTP Mida eFramework 2.9.0 Remote Code Execution S
HTTP October CMS Build 465 File Deletion S
HTTP October CMS Build 465 File Read S
HTTP October CMS Build 465 File Upload S
HTTP Online Bike Rental 1.0 File Upload S
HTTP Online Bike Rental 1.0 Shell Upload S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln (From Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln (To Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_1 (From Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_1 (To Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_2 (From Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_2 (To Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_3 (From Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_3 (To Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_4 (From Server) S
HTTP Online Book Store 'add_admin.php' Cross-Site Scripting Vuln_4 (To Server) S
HTTP Online Discussion Forum Site 1.0 Remote Code Execution S
HTTP Online Shopping Alphaware 1.0 'Address' Cross-Site Scripting Vuln (From Server) S
HTTP Online Shopping Alphaware 1.0 'Address' Cross-Site Scripting Vuln (To Server) S
HTTP Online Shopping Alphaware 1.0 'cancel.php' SQL Injection Vuln S
HTTP Online Shopping Alphaware 1.0 'confirm.php' SQL Injection Vuln S
HTTP Online Shopping Alphaware 1.0 'Country' Cross-Site Scripting Vuln (From Server) S
HTTP Online Shopping Alphaware 1.0 'Country' Cross-Site Scripting Vuln (To Server) S
HTTP Online Shopping Alphaware 1.0 'details.php' SQL Injection Vuln S
HTTP Online Shopping Alphaware 1.0 'Firstname' Cross-Site Scripting Vuln (From Server) S
HTTP Online Shopping Alphaware 1.0 'Firstname' Cross-Site Scripting Vuln (To Server) S
HTTP Online Shopping Alphaware 1.0 'Lastname' Cross-Site Scripting Vuln (From Server) S
HTTP Online Shopping Alphaware 1.0 'Lastname' Cross-Site Scripting Vuln (To Server) S
HTTP Online Shopping Alphaware 1.0 'Mobile' Cross-Site Scripting Vuln (From Server) S
HTTP Online Shopping Alphaware 1.0 'Mobile' Cross-Site Scripting Vuln (To Server) S
HTTP Online Shopping Alphaware 1.0 'Password Change' CSRF Vuln (From Server) S
HTTP Online Shopping Alphaware 1.0 'Password Change' CSRF Vuln (To Server) S
HTTP Online Shopping Alphaware 1.0 'receipt.php' SQL Injection Vuln S
HTTP Online Shopping Alphaware 1.0 'summary.php' SQL Injection Vuln S
HTTP Online Shopping Alphaware 1.0 Arbitrary File Upload Vuln (From Server) S
HTTP Online Shopping Alphaware 1.0 Arbitrary File Upload Vuln (To Server) S
HTTP Online Shopping Alphaware 1.0 SQL Injection S
HTTP Online Shopping Portal 3.1 Shell Upload S
HTTP OpenEMR 5.0.1 'import_template.php' Remote Code Execution S
HTTP Pandora FMS 7.0 NG 746 Code Execution S
HTTP pfSense 2.4.4-p3 Cross Site Request Forgery (From Server) S
HTTP pfSense 2.4.4-p3 Cross Site Request Forgery (To Server) S
HTTP Pharmacy Medical Store And Sale Point 1.0 SQL Injection S
HTTP PHPGurukul Curfew e-Pass Management System 1.0 'editid' SQL Injection Vuln S
HTTP PHPGurukul Curfew e-Pass Management System 1.0 'fromdate' SQL Injection Vuln S
HTTP PHPGurukul Curfew e-Pass Management System 1.0 'searchdata' SQL Injection Vuln S
HTTP PHPGurukul Curfew e-Pass Management System 1.0 'searchdata' SQL Injection Vuln_1 S
HTTP PHPGurukul Curfew e-Pass Management System 1.0 'viewid' SQL Injection Vuln S
HTTP PNPSCADA 2.200816204020 SQL Injection S
HTTP QiHang Media Web Digital Signage 3.0.9 Arbitrary File Deletion S
HTTP QiHang Media Web Digital Signage 3.0.9 Arbitrary File Disclosure S
HTTP QiHang Media Web Digital Signage 3.0.9 Credential Disclosure S
HTTP QiHang Media Web Digital Signage 3.0.9 Password Disclosure S
HTTP QiHang Media Web Digital Signage 3.0.9 Remote Code Execution S
HTTP Ruijie Networks Switch eWeb S29_RGOS 11.4 Directory Traversal S
HTTP Seowon SlC 130 Router Remote Code Execution S
HTTP SharePoint DataSet DataTable Deserialization S
HTTP Stock Management System 1.0 'editBrandName' Cross Site Scripting S
HTTP Stock Management System 1.0 'editCategoriesName' Cross Site Scripting S
HTTP Stock Management System 1.0 'editProductName' Cross Site Scripting S
HTTP Stock Management System 1.0 Credentials Cross Site Scripting S
HTTP Stock Management System 1.0 Cross Site Request Forgery (From Server) S
HTTP Stock Management System 1.0 Cross Site Request Forgery (To Server) S
HTTP Stock Management System 1.0 SQL Injection S
HTTP SugarCRM 'current_step' Cross-Site Scripting Vuln S
HTTP SugarCRM 'do' Cross-Site Scripting Vuln S
HTTP SugarCRM 'updated_records' Cross-Site Scripting Vuln S
HTTP Synology DiskStation Manager smart.cgi Remote Command Execution S
HTTP Tailor Management System 1.0 'id' SQL Injection Vuln S
HTTP Tailor Management System 1.0 'setgeneral.php' Cross-Site Scripting Vuln S
HTTP Tailor Management System 1.0 'title' SQL Injection Vuln S
HTTP TP-Link WDR4300 Remote Code Execution S
HTTP Travel Management System 1.0 - File Download S
HTTP Travel Management System 1.0 - File Upload S
HTTP Umbraco CMS 7.12.4 Remote Code Execution S
HTTP vBulletin 5.6.2 'text' Cross-Site Scripting Vuln S
HTTP vBulletin 5.6.2 'title' Cross-Site Scripting Vuln S
HTTP vBulletin 5.x Remote Code Execution S
HTTP Victor CMS 1.0 'search' SQL Injection Vuln S
HTTP WordPress Autoptimize 2.7.6 Shell Upload S
HTTP WordPress Change Login Logo 1.0.1 'height' Cross-Site Scripting Vuln S
HTTP WordPress Change Login Logo 1.0.1 'width' Cross-Site Scripting Vuln S
HTTP WordPress NAB Transact WooCommerce 2.1.0 Payment Bypass S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.