BugSearch è un portale d'informazione sul mondo della sicurezza web e non che offre una serie di servizi utili a divulgare rapidamente ai propri utenti registrati gli avvisi di sicurezza scoperti nella rete, in modo tale da poter essere avvisati tempestivamente su bachi, falle di sistema, exploit e threats che affliggono le applicazioni e correggerle nel minor tempo possibile.

Novità: Invia Nuovo Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Multi-Page Comment System 1.1.0 Insecure Cookie Handling Vulnerability15-05-2008
IMGallery 2.5 Multiply Remote SQL Injection Vulnerabilities15-05-2008
Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit15-05-2008
IDAutomation Bar Code ActiveX Multiple Remote Vulnerabilities14-05-2008
Freelance Auction Script 1.0 (browseproject.php) SQL Injection Vuln14-05-2008
Feedback and Rating Script 1.0 (detail.php) SQL Injection Vulnerability14-05-2008
AS-GasTracker 1.0.0 Insecure Cookie Handling Vulnerability14-05-2008
ActiveKB <= 1.5 Insecure Cookie Handling-Arbitrary Admin Access14-05-2008
Internet Photoshow (Special Edition) Insecure Cookie Handling Vuln14-05-2008
La-Nai CMS <= 1.2.16 (fckeditor) Arbitrary File Upload Exploit14-05-2008
MS Internet Explorer (Print Table of Links) Cross-Zone Scripting PoC14-05-2008
Rgboard <= 3.0.12 (RFI-XSS) Multiple Remote Vulnerabilities14-05-2008
Kostenloses Linkmanagementscript (page_to_include) RFI Vulnerability14-05-2008
EQDKP 1.3.2f (user_id) Authentication Bypass (PoC)13-05-2008
e107 Plugin BLOG Engine 2.2 (rid) Blind SQL Injection Vulnerability13-05-2008
e-107 Plugin zogo-shop 1.16 Beta 13 SQL Injection Vulnerability13-05-2008
Web Group Communication Center (WGCC) <= 1.0.3 SQL Injection Vuln13-05-2008
CaLogic Calendars 1.2.2 (langsel) Remote SQL Injection Vulnerability13-05-2008
Meto Forum 1.1 Multiple Remote SQL Injection Vulnerabilities13-05-2008
EMO Realty Manager (news.php ida) SQL Injection Vulnerability13-05-2008
The Real Estate Script (dpage.php docID) SQL Injection Vulnerability13-05-2008
Linkspile (link.php cat_id) Remote SQL Injection Vulnerability13-05-2008
AJ Article 1.0 (featured_article.php) Remote SQL Injection Vulnerability12-05-2008
AJ Auction <= 6.2.1 (classifide_ad.php) SQL Injection Vulnerability12-05-2008
AJ Classifieds 2008 (index.php) Remote SQL Injection Vulnerability12-05-2008
AJ Dating 1.0 (view_profile.php) Remote SQL Injection Vulnerability12-05-2008
ZeusCart <= 2.0 (category_list.php) SQL Injection Vulnerability12-05-2008
ClanLite 2.x (SQL Injection-XSS) Multiple Remote Vulnerabilities12-05-2008
BIGACE 2.4 Multiple Remote File Inclusion Vulnerabilities12-05-2008
Battle.net Clan Script <= 1.5.x Remote SQL Injection Exploit12-05-2008