BugSearch è un portale d'informazione sul mondo della sicurezza web e non che offre una serie di servizi utili a divulgare rapidamente ai propri utenti registrati gli avvisi di sicurezza scoperti nella rete, in modo tale da poter essere avvisati tempestivamente su bachi, falle di sistema, exploit e threats che affliggono le applicazioni e correggerle nel minor tempo possibile.

Novità: Invia Nuovo Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
e107 Plugin ZoGo-Shop 1.15.4 (product) SQL Injection Vulnerability22-11-2008
Discuz! Remote Reset User Password Exploit22-11-2008
getaphpsite Auto Dealers Remote File Upload Vulnerability22-11-2008
Ez Ringtone Manager Multiple Remote File Disclosure Vulnerabilities22-11-2008
LoveCMS 1.6.2 Final (Simple Forum 3.1d) Change Admin Password Exploit22-11-2008
getaphpsite Real Estate Remote File Upload Vulnerability22-11-2008
Vlog System 1.1 (blog.php user) Remote SQL Injection Vulnerability22-11-2008
Joomla Component Thyme 1.0 (event) SQL Injection Vulnerability21-11-2008
verlihub <= 0.9.8d-RC2 Remote Command Execution Vulnerability21-11-2008
Joomla Component Thyme (event) SQL Injection Vulnerability21-11-2008
KVIrc 3.4.2 Shiny (uri handler) Remote Command Execution Exploit21-11-2008
PHP 5.2.6 (error_log) safe_mode Bypass Vulnerability20-11-2008
PHP-Fusion 7.00.1 (messages.php) Remote SQL Injection Exploit20-11-2008
NatterChat 1.1 (Auth Bypass) Remote SQL Injection Vulnerability20-11-2008
vBulletin 3.7.3 Visitor Message XSS-XSRF + worm Exploit20-11-2008
Natterchat 1.12 (Auth Bypass) Remote SQL Injection Vulnerability20-11-2008
ToursManager (tourview.php tourid) Blind SQL Injection Vulnerability20-11-2008
Oracle Database Vault ptrace(2) Privilege Escalation Exploit20-11-2008
BitDefender (module pdf.xmd) Infinite Loop Denial of Service PoC20-11-2008
NatterChat 1.1 Remote Admin Bypass Vulnerability20-11-2008
VCalendar (VCalendar.mdb) Remote Database Disclosure Vulnerability20-11-2008
RevSense (Auth bypass) Remote SQL Injection Vulnerability19-11-2008
MauryCMS <= 0.53.2 Remote Shell Upload Exploit19-11-2008
MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit19-11-2008
Alex News-Engine 1.5.1 Remote Arbitrary File Upload Vulnerability19-11-2008
Alex Article-Engine 1.3.0 (fckeditor) Arbitrary File Upload Vulnerability19-11-2008
PunBB (Private Messaging System 1.2.x) Multiple LFI Exploit19-11-2008
E-topbiz Link Back Checker 1 Insecure Cookie Handling Vulnerability18-11-2008
Free Directory Script 1.1.1 (API_HOME_DIR) RFI Vulnerability 18-11-2008
Pluck CMS 4.5.3 (g_pcltar_lib_dir) Local File Inclusion Vulnerability18-11-2008