BugSearch è un portale d'informazione sul mondo della sicurezza web e non che offre una serie di servizi utili a divulgare rapidamente ai propri utenti registrati gli avvisi di sicurezza scoperti nella rete, in modo tale da poter essere avvisati tempestivamente su bachi, falle di sistema, exploit e threats che affliggono le applicazioni e correggerle nel minor tempo possibile.

Novità: Invia Nuovo Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Booked Scheduler 2.7.5 - Remote Command Execution (Metasploit)04-03-2019
MarcomCentral FusionPro VDP Creator < 10.0 - Directory Traversal04-03-2019
Linux/x64 - Kill All Processes Shellcode (11 bytes)04-03-2019
Bolt CMS 3.6.4 - Cross-Site Scripting04-03-2019
Linux/x86 - iptables -F Shellcode (43 bytes)04-03-2019
Splunk Enterprise 7.2.4 - Custom App Remote Command Execution (Persistent Backdoor / Custom Binary)04-03-2019
WordPress Plugin Cerber Security, Antispam & Malware Scan 8.0 - Multiple Bypass Vulnerabilities04-03-2019
Fiberhome AN5506-04-F RP2669 - Persistent Cross-Site Scripting04-03-2019
Linux/x86 - NOT Encoder / Decoder - execve(/bin/sh) Shellcode (44 bytes)04-03-2019
zzzphp CMS 1.6.1 - Cross-Site Request Forgery04-03-2019
Google Chrome < M72 - PaymentRequest Service Use-After-Free01-03-2019
Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost01-03-2019
Linux < 4.14.103 / < 4.19.25 - Out-of-Bounds Read and Write in SNMP NAT Module01-03-2019
Google Chrome < M72 - FileWriterImpl Use-After-Free01-03-2019
tcpdump < 4.9.3 - Multiple Heap-Based Out-of-Bounds Reads01-03-2019
Google Chrome < M72 - RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free01-03-2019
Cisco WebEx Meetings < 33.6.6 / < 33.9.1 - Privilege Escalation01-03-2019
macOS XNU - Copy-on-Write Behavior Bypass via Mount of User-Owned Filesystem Image01-03-2019
WordPress Core 5.0 - Remote Code Execution01-03-2019
Feng Office 3.7.0.5 - Remote Command Execution (Metasploit)28-02-2019
WebKitGTK 2.23.90 / WebKitGTK+ 2.22.6 - Denial of Service28-02-2019
Simple Online Hotel Reservation System - Cross-Site Request Forgery (Add Admin)28-02-2019
FTP Server 1.32 - Denial of Service28-02-2019
Simple Online Hotel Reservation System - SQL Injection28-02-2019
TransMac 12.3 - Denial of Service (PoC)28-02-2019
Simple Online Hotel Reservation System - Cross-Site Request Forgery (Delete Admin)28-02-2019
Usermin 1.750 - Remote Command Execution (Metasploit)28-02-2019
Joomla! Component J2Store < 3.3.7 - SQL Injection28-02-2019
PHP 7.2 - 'imagecolormatch()' Out of Band Heap Write27-02-2019
PHP Ecommerce Script 2.0.6 - Cross-Site Scripting / SQL Injection25-02-2019