BugSearch è un portale d'informazione sul mondo della sicurezza web e non che offre una serie di servizi utili a divulgare rapidamente ai propri utenti registrati gli avvisi di sicurezza scoperti nella rete, in modo tale da poter essere avvisati tempestivamente su bachi, falle di sistema, exploit e threats che affliggono le applicazioni e correggerle nel minor tempo possibile.

Novità: Invia Nuovo Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Proticaret E-Commerce Script 3.0 - SQL Injection 17-11-2014
PHPFox - Stored XSS Vulnerability 17-11-2014
ZTE ZXHN H108L - Authentication Bypass 17-11-2014
MyBB Forums 1.8.2 - Stored XSS Vulnerability 17-11-2014
Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution (MSF) 15-11-2014
Gogs (label pararm) - SQL Injection 14-11-2014
Gogs (users and repos q pararm) - SQL Injection Vulnerabilities 14-11-2014
MS14-064 Microsoft Windows OLE Package Manager Code Execution 14-11-2014
MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Python 14-11-2014
OSSEC 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalation 14-11-2014
Internet Explorer OLE Automation Array Remote Code Execution 13-11-2014
Internet Explorer OLE Automation Array Remote Code Execution (msf) 13-11-2014
MyBB 1.8.X - Multiple Vulnerabilities 13-11-2014
F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability 13-11-2014
Digi Online Examination System 2.0 - Unrestricted File Upload 13-11-2014
Piwigo 2.6.0 (picture.php, rate param) - SQL Injection 13-11-2014
CorelDRAW X7 CDR File (CdrTxt.dll) Off-By-One Stack Corruption Vulnerability 12-11-2014
MS Office 2007 and 2010 - OLE Arbitrary Command Execution 12-11-2014
WordPress SupportEzzy Ticket System Plugin 1.2.5 - Stored XSS Vulnerability 12-11-2014
Internet Explorer 8 MS14-035 Use-After-Free Exploit 10-11-2014
Password Manager Pro / Pro MSP - Blind SQL Injection 10-11-2014
Visual Mining NetCharts Server Remote Code Execution 10-11-2014
XCloner Wordpress/Joomla! Plugin - Multiple Vulnerabilities 10-11-2014
ManageEngine OpManager, Social IT Plus and IT360 - Multiple Vulnerabilities 10-11-2014
Progress OpenEdge 11.2 - Directory Traversal 10-11-2014
PHP-Fusion 7.02.07 - SQL Injection 10-11-2014
Position independent & Alphanumeric 64-bit execve("/bin/sh\0",NULL,NULL); (87 bytes) 10-11-2014
ZTE ZXDSL 831CII - Insecure Direct Object Reference 10-11-2014
ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities09-11-2014
X7 Chat 2.0.5 lib/message.php preg_replace() PHP Code Execution 06-11-2014