BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
DenyAll WAF < 6.3.0 - Remote Code Execution (Metasploit)23-09-2017
Stock Photo Selling 1.0 - SQL Injection22-09-2017
Microsoft Edge Chakra - Deferred Parsing Makes Wrong Scopes21-09-2017
Disk Pulse Enterprise 9.9.16 - GET Buffer Overflow (Metasploit)21-09-2017
Linux Kernel <= 4.13.1 - BlueTooth Buffer Overflow (PoC)21-09-2017
Microsoft Edge Chakra - 'Parser::ParseCatch' does not Handle 'eval'21-09-2017
Microsoft Edge - Chakra Incorrectly Parses Object Patterns21-09-2017
Microsoft Edge Chakra - 'JavascriptFunction::ReparseAsmJsModule' Incorrectly Re-parses21-09-2017
PHPMyFAQ 2.9.8 - Cross-Site Scripting21-09-2017
HPE < 7.2 - Java Deserialization19-09-2017
Microsoft Edge 38.14393.1066.0 - Memory Corruption with Partial Page Loading19-09-2017
Microsoft Edge 38.14393.1066.0 - 'COptionsCollectionCacheItem::GetAt' Out-of-Bounds Read19-09-2017
Microsoft Windows Kernel win32k.sys TTF Font Processing - Out-of-Bounds Read with Malformed "glyf" Table (win32k!fsc_CalcGrayRow)18-09-2017
Microsoft Windows Kernel - 'win32k!NtGdiDoBanding' Stack Memory Disclosure18-09-2017
Apache - HTTP OPTIONS Memory Leak18-09-2017
Microsoft Windows Kernel - 'win32k!NtGdiGetFontResourceInfoInternalW' Stack Memory Disclosure18-09-2017
Microsoft Windows Kernel - 'win32k!NtQueryCompositionSurfaceBinding' Stack Memory Disclosure18-09-2017
Microsoft Windows Kernel - 'win32k!NtGdiEngCreatePalette' Stack Memory Disclosure18-09-2017
Microsoft Windows Kernel win32k.sys TTF Font Processing - Out-of-Bounds Reads/Writes with Malformed 'fpgm' table (win32k!bGeneratePath)18-09-2017
Microsoft Windows Kernel - 'win32k!NtGdiGetPhysicalMonitorDescription' Stack Memory Disclosure18-09-2017
Microsoft Windows Kernel - 'nt!NtSetIoCompletion / nt!NtRemoveIoCompletion' Pool Memory Disclosure18-09-2017
Microsoft Windows Kernel - 'win32k!NtGdiGetGlyphOutline' Pool Memory Disclosure18-09-2017
DigiAffiliate 1.4 - Cross-Site Request Forgery (Update Admin)18-09-2017
Digirez 3.4 - Cross-Site Request Forgery (Update Admin)18-09-2017
iBall ADSL2+ Home Router - Authentication Bypass18-09-2017
Digileave 1.2 - Cross-Site Request Forgery (Update Admin)18-09-2017
Designed by APP MOCHA SQL Injection17-09-2017
Netdecision 5.8.2 - Local Privilege Escalation16-09-2017
PTCEvolution 5.50 - SQL Injection15-09-2017
Contact Manager 1.0 - 'femail' Parameter SQL Injection15-09-2017