Search

Traffic File Update - February 2016

This Traffic IQ Professional update for February 2016 contains the latest application exploits, threats and security evasion techniques along with technical data and high quality security rules.

Traffic IQ Professional

Traffic File Update for February 2016

126 Application Exploits

HTTP Adobe Flash BlurFilter Processing Out-of-Bounds Memset Vulnerability S
HTTP Adobe Flash Use-After-Free CVE-2015-8635 Vulnerability S
HTTP Advanced Electron Forum CSRF Vulnerability (From Server) S
HTTP Advanced Electron Forum CSRF Vulnerability (To Server) S
HTTP Advanced Electron Forum CSRF Vulnerability_1 (From Server) S
HTTP Advanced Electron Forum CSRF Vulnerability_1 (To Server) S
HTTP Advanced Electron Forum CSRF Vulnerability_2 S
HTTP Advanced Electron Forum CSRF Vulnerability_3 (From Server) S
HTTP Advanced Electron Forum CSRF Vulnerability_3 (To Server) S
HTTP Advanced Electron Forum XSS Vulnerability (From Server) S
HTTP Advanced Electron Forum XSS Vulnerability (To Server) S
HTTP ATutor Cross Site Scripting Vulnerability S
HTTP Baumer VeriSens Application Suite 2.6.2 - Buffer Overflow Vulnerability S
HTTP CF Image Host 1.65 - PHP Command Injection S
HTTP D-Link DGL5500 - HNAP Buffer Overflow Vulnerability S
HTTP D-Link DIR-601 - Command Injection Vulnerability S
HTTP DirectAdmin CSRF Vulnerability (From Server) S
HTTP DirectAdmin CSRF Vulnerability (To Server) S
HTTP DLink DVG-N5402SP - 'errorpage' Directory Traversal S
HTTP Dolibarr CVE-2016-1912 'email' HTML Injection S
HTTP Dolibarr CVE-2016-1912 'firstname' HTML Injection S
HTTP Dolibarr CVE-2016-1912 'job' HTML Injection S
HTTP Dolibarr CVE-2016-1912 'lastname' HTML Injection S
HTTP Dolibarr CVE-2016-1912 'signature' HTML Injection S
HTTP eClinicalWorks (CCMR) - 'strMessage' XSS (Percent Encoded) S
HTTP eClinicalWorks (CCMR) - 'strMessage' XSS S
HTTP eClinicalWorks (CCMR) - 'uemail' SQL Injection S
HTTP eClinicalWorks (CCMR) - Add User CSRF (From Server) S
HTTP eClinicalWorks (CCMR) - Add User CSRF (To Server) S
HTTP eWON AST_ErrorMsg Parameter Reflected XSS Vulnerability (SCADA) S
HTTP eWON Enabling I-O Servers and Configuring With Custom Values Vulnerability (SCADA) S
HTTP eWON Unauthorized Delete Any User Vulnerability (SCADA) S
HTTP eWON Unauthorized Enumerating Users Vulnerability (SCADA) S
HTTP eWON Unauthorized Information Disclosure Vulnerability (SCADA) S
HTTP eWON Unauthorized Parameter Modification of I-O Servers Vulnerability (SCADA) S
HTTP foobar2000 1.3.9 - (m3u) Local Crash PoC S
HTTP foobar2000 1.3.9 - (m3u8) Local Crash PoC S
HTTP foobar2000 1.3.9 - (pls) Local Crash PoC S
HTTP Glassfish Server - Arbitrary File Read Vulnerability S
HTTP Gongwalker API Manager 1.1 - Blind SQL Injection (Percent Encoded) S
HTTP Gongwalker API Manager 1.1 - Blind SQL Injection S
HTTP Hippo CMS Cross-Site Scripting Vulnerability (From Server) S
HTTP Hippo CMS Cross-Site Scripting Vulnerability (To Server) S
HTTP Ipswitch WhatsUp Gold CVE-2015-8261 Security Bypass Vulnerability S
HTTP iScripts EasyCreate 3.0 - 'filename' XSS S
HTTP iScripts EasyCreate 3.0 - 'selectedimage' XSS S
HTTP iScripts EasyCreate 3.0 - 'siteid' SQL Injection S
HTTP iScripts EasyCreate 3.0 - 'siteName' XSS S
HTTP iScripts EasyCreate 3.0 - Edit Profile CSRF (From Server) S
HTTP iScripts EasyCreate 3.0 - Edit Profile CSRF (To Server) S
HTTP Manage Engine Network Config Manager CSRF Vulnerability (From Server) S
HTTP Manage Engine Network Config Manager CSRF Vulnerability (To Server) S
HTTP ManageEngine EventLog Analyzer 4.0 - 10 - Privilege Escalation (Perc Enc) S
HTTP ManageEngine EventLog Analyzer 4.0 - 10 - Privilege Escalation S
HTTP Microsoft IE EdUtil__GetCommonAncestorElement DoS Vulnerability S
HTTP NETGEAR ProSafe Network Management System NMS300 - File Download S
HTTP NETGEAR ProSafe Network Management System NMS300 - File Upload S
HTTP NETGEAR ProSafe Network Management System NMS300 - imageId Disclosure S
HTTP NETGEAR ProSafe Network Management System NMS300 - imageId Download S
HTTP netis RealTek Wireless Router ADSL Modem - Delete User CSRF S
HTTP Nibbleblog File Upload Vulnerability S
HTTP Nordex Control 2 SCADA Cross Site Scripting Vulnerability S
HTTP Open Audit delete_system.php SQL Injection S
HTTP Open Audit list_viewdef_software_for_system.php SQL Injection S
HTTP Open Audit software_add_license.php SQL Injection (Percent Encoded) S
HTTP Open Audit software_add_license.php SQL Injection S
HTTP Open Audit system_export.php SQL Injection S
HTTP OpenCart Cross Site Scripting Vulnerability S
HTTP OpenDocMan CSRF Vulnerability (From Server) S
HTTP OpenDocMan CSRF Vulnerability (To Server) S
HTTP OpenMRS Reporting Module 0.9.7 Remote Code Execution Vulnerability S
HTTP orion.extfeedbackform Bitrix Module 2.1.2 'by' SQL Injection S
HTTP orion.extfeedbackform Bitrix Module 2.1.2 'order' SQL Injection S
HTTP Pligg CMS 2.0.2 - CSRF Code Execution S
HTTP PotPlayer 1.6.5x - .mp3 Crash PoC S
HTTP PROLiNK H5004NK ADSL Wireless Modem - Config Information Disclosure S
HTTP PROLiNK H5004NK ADSL Wireless Modem - Create User CSRF S
HTTP PROLiNK H5004NK ADSL Wireless Modem - Delete User CSRF S
HTTP Ramui Forum Script 9.0 - SQL Injection Exploit (Percent Encoded) S
HTTP Ramui Forum Script 9.0 - SQL Injection Exploit S
HTTP Ramui Web Hosting Directory Script 4.0 - Remote File Inclusion S
HTTP Roundcube Directory Traversal Vulnerability (From Server) S
HTTP Roundcube Directory Traversal Vulnerability (To Server) S
HTTP SeaWell Networks Spectrum - Add Admin User CSRF S
HTTP SeaWell Networks Spectrum - Add User CSRF S
HTTP SeaWell Networks Spectrum - Change Admin Password CSRF S
HTTP SeaWell Networks Spectrum - Cookie Config Disclosure S
HTTP SeaWell Networks Spectrum - Delete User CSRF S
HTTP SeaWell Networks Spectrum - Path Traversal S
HTTP SeaWell Networks Spectrum - Policy Config Disclosure S
HTTP SeaWell Networks Spectrum - System Config Disclosure S
HTTP Serendipity Cross Site Scripting Vulnerability S
HTTP Simple PHP Polling System - manage-profile.php XSS S
HTTP Simple PHP Polling System - registeracc.php SQL Injection S
HTTP Simple PHP Polling System - registeracc.php XSS S
HTTP Symphony CMS 2.6.3 - 'email' SQL Injection S
HTTP Symphony CMS 2.6.3 - 'save' SQL Injection S
HTTP Symphony CMS 2.6.3 - 'username' SQL Injection S
HTTP TECO TP3-PCLINK 2.1 - .tpc File Handling Buffer Overflow S
HTTP UliCMS 9.8.1 - 'country_blacklist' SQL Injection S
HTTP Viprinet Multichannel VPN Router XSS Vulnerability S
HTTP Viprinet Multichannel VPN Router XSS Vulnerability_1 S
HTTP Viprinet Multichannel VPN Router XSS Vulnerability_2 S
HTTP WordPress ALO EasyMail Newsletter Plugin CSRF Vulnerability (From Server) S
HTTP WordPress ALO EasyMail Newsletter Plugin CSRF Vulnerability (To Server) S
HTTP WordPress User Meta Manager Plugin 3.4.6 - 'delete_user' SQL Injection S
HTTP WordPress User Meta Manager Plugin 3.4.6 - 'edit_user' SQL Injection (Perc Enc) S
HTTP WordPress User Meta Manager Plugin 3.4.6 - 'edit_user' SQL Injection S
HTTP WordPress User Meta Manager Plugin 3.4.6 - Privilege Escalation S
HTTP WordPress WP Fastest Cache Plugin 0.8.4.8 - SQL Injection (From Server) S
HTTP WordPress WP Fastest Cache Plugin 0.8.4.8 - SQL Injection (To Server) S
HTTP WP Booking Calendar Contact Form 1.1.24 - Change Appt XSS (From Server) S
HTTP WP Booking Calendar Contact Form 1.1.24 - Change Appt XSS (To Server) S
HTTP WP Booking Calendar Contact Form 1.1.24 - Update Calendar XSS (From Server) S
HTTP WP Booking Calendar Contact Form 1.1.24 - Update Calendar XSS (To Server) S
HTTP WP Symposium Pro Social Network Plugin CSRF (From Server) S
HTTP WP Symposium Pro Social Network Plugin CSRF (To Server) S
HTTP WP User Meta Manager Plugin 3.4.6 - Create Backup Table Disclosure (Perc Enc) S
HTTP WP User Meta Manager Plugin 3.4.6 - Create Backup Table Disclosure S
HTTP WP User Meta Manager Plugin 3.4.6 - Get CSV Disclosure (Perc Enc) S
HTTP WP User Meta Manager Plugin 3.4.6 - Get CSV Disclosure S
HTTP YesWiki Directory Traversal Vulnerability (From Server) S
HTTP YesWiki Directory Traversal Vulnerability (To Server) S
KeePass Password Safe Classic 1.29 Denial Of Service Vulnerability S
Konica Minolta FTP Utility 1.00 CWD Command Overflow Vulnerability S
SevOne NMS 5.3.6.0 Remote Code Execution Vulnerability S


idappcom - Auditing, verifying and enhancing the capabilities of corporate security defences.

We do not use cookies for tracking users, displaying customised content or storing information about users, other than that required to maintain 'session state' for the login system for registered users. Please read our cookie policy for more information. Please note that by using this site you are consenting to the use of cookies.