BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
OpenText Documentum Content Server - Privilege Escalation17-10-2017
TP-Link WR940N - Authenticated Remote Code Exploit17-10-2017
Windows x64 - API Hooking Shellcode (117 bytes)16-10-2017
3CX Phone System 15.5.3554.1 - Directory Traversal16-10-2017
Webmin 1.850 - Multiple Vulnerabilities15-10-2017
Logitech Media Server - Cross-Site Scripting14-10-2017
TP-Link TL-MR3220 - Cross-Site Scripting12-10-2017
Trend Micro InterScan Messaging Security (Virtual Appliance) - Remote Code Execution (Metasploit)11-10-2017
Trend Micro OfficeScan 11.0/XG (12.0) - Remote Code Execution (Metasploit)11-10-2017
ASX to MP3 3.1.3.7 - '.m3u' Buffer Overflow11-10-2017
binutils 2.29.51.20170921 - 'read_1_byte' Heap-Based Buffer Overflow10-10-2017
Complain Management System - Hard-Coded Credentials / Blind SQL injection10-10-2017
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution09-10-2017
ClipShare 7.0 - SQL Injection09-10-2017
VX Search Enterprise 10.1.12 - Buffer Overflow09-10-2017
Rancher Server - Docker Daemon Code Execution (Metasploit)09-10-2017
OrientDB 2.2.2 - 2.2.22 - Remote Code Execution (Metasploit)09-10-2017
PyroBatchFTP 3.17 - Buffer Overflow (SEH)07-10-2017
Microsoft Windows 10 x64 RS2 - 'win32kfull!bFill' Pool Overflow06-10-2017
WebKit JSC - 'BytecodeGenerator::emitGetByVal' Incorrect Optimization (2)04-10-2017
ClipBucket 2.8.3 - Remote Code Execution04-10-2017
Fiberhome AN5506-04-F - Command Injection03-10-2017
DiskBoss Enterprise 8.4.16 - Local Buffer Overflow03-10-2017
EPESI 1.8.2 rev20170830 - Cross-Site Scripting03-10-2017
Dnsmasq < 2.78 - Heap-Based Overflow02-10-2017
Dnsmasq < 2.78 - Information Leak02-10-2017
Dnsmasq < 2.78 - Lack of free() Denial of Service02-10-2017
Dnsmasq < 2.78 - Stack-Based Overflow02-10-2017
Dnsmasq < 2.78 - Integer Underflow02-10-2017
Dnsmasq < 2.78 - 2-byte Heap-Based Overflow02-10-2017