BugSearch è un portale d'informazione sul mondo della sicurezza web e non che offre una serie di servizi utili a divulgare rapidamente ai propri utenti registrati gli avvisi di sicurezza scoperti nella rete, in modo tale da poter essere avvisati tempestivamente su bachi, falle di sistema, exploit e threats che affliggono le applicazioni e correggerle nel minor tempo possibile.

Novità: Invia Nuovo Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
AuraCMS <= 2.2.2 (pages_data.php) Arbitrary Edit-Add-Delete Exploit09-07-2008
Dreampics Builder (page) Remote SQL Injection Vulnerability09-07-2008
trixbox (langChoice) Local File Inclusion Exploit (connect-back) v209-07-2008
Last Minute Script <= 4.0 (cid) Remote SQL Injection Vulnerability08-07-2008
Mole Group Hotel Script 1.0 Remote SQL Injection Vulnerability08-07-2008
Mole Group Real Estate Script <= 1.1 Remote SQL Injection Vulnerability08-07-2008
BrewBlogger 2.1.0.1 Arbitrary Add Admin Exploit08-07-2008
Boonex Dolphin 6.1.2 Multiple Remote File Inclusion Vulnerabilities08-07-2008
Joomla Component com_content 1.0.0 (ItemID) SQL Injection Vuln08-07-2008
Mole Group Last Minute Script <= 4.0 Remote SQL Injection Vulnerability08-07-2008
BoonEx Ray 3.5 (sIncPath) Remote File Inclusion Vulnerability08-07-2008
Multiple Vendors Malicious SVG File Denial of Service PoC08-07-2008
Download Accelerator Plus - DAP 8.x (m3u) Local BOF Exploit 0day08-07-2008
OllyDBG v1.10 and ImpREC v1.7f (export name) BOF PoC08-07-2008
Poppler <= 0.8.4 libpoppler uninitialized pointer Code Execution PoC08-07-2008
SmartPPC Pay Per Click Script (idDirectory) Blind SQL Injection Vuln07-07-2008
WebXell Editor 0.1.3 Arbitrary File Upload Vulnerability07-07-2008
fuzzylime cms 3.01a (file) Local File Inclusion Exploit07-07-2008
Triton CMS Pro (X-Forwarded-For) Blind SQL Injection Exploit07-07-2008
Neutrino 0.8.4 Atomic Edition Remote Code Execution Exploit07-07-2008
SmartPPC Pay Per Click Script (idDirectory) Blind SQL Injection Exploit07-07-2008
XPOZE Pro 3.06 (uid) Remote SQL Injection Vulnerability06-07-2008
ContentNow 1.4.1 (Upload-XSS) Multiple Remote Vulnerabilities06-07-2008
CMailServer 5.4.6 (CMailCOM.dll) Remote SEH Overwrite Exploit06-07-2008
Safari + Quicktime <= 7.3 RTSP Content-Type Remote BOF Exploit06-07-2008
CMailServer 5.4.6 (CMailCOM.dll) Remote SEH Overwrite Exploit06-07-2008
Thelia 1.3.5 Multiple Vulnerabilities Exploit05-07-2008
Kasseler CMS 1.3.0 (LFI-XSS) Multiple Vulnerabilities05-07-2008
ImperialBB <= 2.3.5 Remote File Upload Exploit05-07-2008
fuzzylime cms 3.01 Remote Command Execution Exploit05-07-2008