BugSearch è un portale d'informazione sul mondo della sicurezza web e non che offre una serie di servizi utili a divulgare rapidamente ai propri utenti registrati gli avvisi di sicurezza scoperti nella rete, in modo tale da poter essere avvisati tempestivamente su bachi, falle di sistema, exploit e threats che affliggono le applicazioni e correggerle nel minor tempo possibile.

Novità: Invia Nuovo Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Joomla! Component Modern Booking 1.0 - 'coupon' Parameter SQL Injection 22-03-2017
Joomla! Component Extra Search 2.2.8 - 'establename' Parameter SQL Injection 21-03-2017
Joomla! Component JooCart 2.x - 'product_id' Parameter SQL Injection 20-03-2017
ExtraPuTTY 0.29-RC2 - Denial of Service 20-03-2017
Joomla! Component jCart for OpenCart 2.0 - 'product_id' Parameter SQL Injection 20-03-2017
Google Nest Cam 5.2.1
 - Buffer Overflow Conditions Over Bluetooth LE 20-03-2017
Oracle Knowledge Management 12.1.1 < 12.2.5 - XML External Entity Leading To Remote Code Execution17-03-2017
Cisco IOS 12.2 < 12.4 / 15.0 < 15.6 - Security Association Negotiation Request Device Memory17-03-2017
GitHub Enterprise < 2.8.7 - Remote Code Execution15-03-2017
Joomla! Component Simple Membership 3.3.3 - 'userId' Parameter SQL Injection 14-03-2017
Joomla! Component Advertisement Board 3.0.4 - 'id' Parameter SQL Injection 14-03-2017
Joomla com_virtuemart Component - 'id' Parameter Sql Injection Vulnerability14-03-2017
Joomla com_phocaguestbook Component - 'id' Parameter Sql Injection Vulnerability14-03-2017
Joomla com_fidecalendar Component - 'aid' Parameter Sql Injection Vulnerability14-03-2017
Joomla com_kunena Component - 'id' Parameter Sql Injection Vulnerability14-03-2017
Joomla com_sngevents Component - 'id' Parameter Sql Injection Vulnerability14-03-2017
Joomla com_registrationpro Component - 'did' Parameter Sql Injection Vulnerability14-03-2017
Joomla com_easyblog Component - 'id' Parameter Sql Injection Vulnerability14-03-2017
Cerberus FTP Server 8.0.10.1 - Denial of Service 13-03-2017
VirtualBox - Cooperating VMs can Escape from Shared Folder 13-03-2017
Car Workshop System - SQL Injection 13-03-2017
Netgear R7000 and R6400 - 'cgi-bin' Command Injection (Metasploit) 13-03-2017
Joomla com_carocci Component - 'isbn' Parameter Sql Injection Vulnerability12-03-2017
Joomla com_kide Component - 'view' Parameter Sql Injection Vulnerability12-03-2017
Joomla com_eventlist Component - 'id' Parameter Sql Injection Vulnerability12-03-2017
Nintendo Switch - WebKit Code Execution (PoC)12-03-2017
Windows x86 - Hide Console Window Shellcode (182 bytes) 11-03-2017
Global In - SQL Injection 11-03-2017
Domain Marketplace Script - SQL Injection 11-03-2017
Global In - Arbitrary File Upload 11-03-2017