BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Ubuntu snapd < 2.37.1 - Local Privilege Escalation12-02-2019
Coship Wireless Router 4.0.0.x/5.0.0.x - WiFi Password Reset11-02-2019
Adobe Flash Player - DeleteRangeTimelineOperation Type Confusion (Metasploit)11-02-2019
AirDroid 4.2.1.6 - Denial of Service11-02-2019
Smoothwall Express 3.1-SP4 - Cross-Site Scripting11-02-2019
IP-Tools 2.5 - Local Buffer Overflow (SEH) (Egghunter)11-02-2019
FutureDj Pro 1.7.2.0 - Denial of Service11-02-2019
River Past Cam Do 3.7.6 - Local Buffer Overflow (SEH)11-02-2019
River Past Video Cleaner 7.6.3 - Local Buffer Overflow (SEH)11-02-2019
Indusoft Web Studio 8.1 SP2 - Remote Code Execution11-02-2019
NUUO NVRmini - upgrade_handle.php Remote Command Execution (Metasploit)11-02-2019
NordVPN 6.19.6 - Denial of Service (PoC)11-02-2019
Avast Anti-Virus < 19.1.2360 - Local Credentials Disclosure11-02-2019
Webiness Inventory 2.3 - 'email' SQL Injection11-02-2019
IPFire 2.21 - Cross-Site Scripting11-02-2019
CentOS Web Panel 0.9.8.763 - Persistent Cross-Site Scripting11-02-2019
VA MAX 8.3.4 - Authenticated Remote Code Execution11-02-2019
Evince - CBT File Command Injection (Metasploit)11-02-2019
MyBB Bans List 1.0 - Cross-Site Scripting11-02-2019
Skia - Incorrect Convexity Assumptions Leading to Buffer Overflows06-02-2019
osCommerce 2.3.4.1 - 'reviews_id' SQL Injection06-02-2019
osCommerce 2.3.4.1 - 'currency' SQL Injection06-02-2019
River Past Audio Converter 7.7.16 - Buffer Overflow (SEH)06-02-2019
osCommerce 2.3.4.1 - 'products_id' SQL Injection06-02-2019
BEWARD N100 H.264 VGA IP Camera M2.1.6 - Cross-Site Request Forgery (Add Admin)05-02-2019
BEWARD N100 H.264 VGA IP Camera M2.1.6 - RTSP Stream Disclosure05-02-2019
BEWARD N100 H.264 VGA IP Camera M2.1.6 - Arbitrary File Disclosure05-02-2019
BEWARD N100 H.264 VGA IP Camera M2.1.6 - Remote Code Execution05-02-2019
Linux/x86 - Random Insertion Encoder and Decoder Shellcode (Generator)05-02-2019
Device Monitoring Studio 8.10.00.8925 - Denial of Service (PoC)05-02-2019