BugSearch è un portale d'informazione sul mondo della sicurezza web e non che offre una serie di servizi utili a divulgare rapidamente ai propri utenti registrati gli avvisi di sicurezza scoperti nella rete, in modo tale da poter essere avvisati tempestivamente su bachi, falle di sistema, exploit e threats che affliggono le applicazioni e correggerle nel minor tempo possibile.

Novità: Invia Nuovo Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Linux/x64 - Bind TCP (4444/TCP) Shell (/bin/sh) + Password (1234567) Shellcode (136 bytes)09-11-2018
Xion 1.0.125 - '.m3u' Local SEH-Based Unicode Venetian Exploit05-03-2018
Dup Scout Enterprise 10.5.12 - 'Share Username' Local Buffer Overflow05-03-2018
TestLink Open Source Test Management < 1.9.16 - Remote Code Execution02-03-2018
uWSGI < 2.0.17 - Directory Traversal02-03-2018
DualDesk 20 - 'Proxy.exe' Denial of Service02-03-2018
SEGGER embOS/IP FTP Server 3.22 - Denial of Service02-03-2018
D-Link DIR-600M Wireless - Cross-Site Scripting02-03-2018
IrfanView 4.50 Email Plugin - Buffer Overflow (SEH Unicode)02-03-2018
IrfanView 4.44 Email Plugin - Buffer Overflow (SEH)02-03-2018
Routers2 2.24 - Cross-Site Scripting28-02-2018
Apple iOS 11.2.5 / watchOS 4.2.2 / tvOS 11.2.5 - 'bluetoothd' Memory Corruption28-02-2018
School Management Script 3.0.4 - Authentication Bypass27-02-2018
Joomla! Component K2 2.8.0 - Arbitrary File Download27-02-2018
GetGo Download Manager 5.3.0.2712 - Buffer Overflow (SEH)27-02-2018
Microsoft Windows Windows 8.1/2012 R2 - SMB Denial of Service27-02-2018
MyBB My Arcade Plugin 1.3 - Cross-Site Scripting27-02-2018
Schools Alert Management Script 2.0.2 - Authentication Bypass27-02-2018
Asterisk chan_pjsip 15.2.0 - 'SUBSCRIBE' Stack Corruption27-02-2018
Asterisk chan_pjsip 15.2.0 - 'SDP fmtp' Denial of Service27-02-2018
Asterisk chan_pjsip 15.2.0 - 'INVITE' Denial of Service27-02-2018
Asterisk chan_pjsip 15.2.0 - 'SDP' Denial of Service27-02-2018
transmission - Integer Overflows Parsing Torrent Files27-02-2018
Chrome V8 - 'PropertyArray' Integer Overflow27-02-2018
Chrome V8 - 'TranslatedState::MaterializeCapturedObjectAt' Type Confusion27-02-2018
Sony Playstation 4 (PS4) 5.01 - WebKit (PoC)27-02-2018
Sony Playstation 4 (PS4) 4.55 - Jailbreak (WebKit 5.01 / 'bpf' Kernel Loader 4.55)27-02-2018
Concrete5 < 8.3.0 - Username / Comments Enumeration27-02-2018
CMS Made Simple 2.1.6 - Remote Code Execution27-02-2018
AsusWRT LAN - Unauthenticated Remote Code Execution (Metasploit)26-02-2018