BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!

Last Advisories
LG MRA58K - Missing Bounds-Checking in AVI Stream Parsing13-06-2017
LG MRA58K - 'ASFParser::ParseHeaderExtensionObjects' Missing Bounds-Checking13-06-2017
Easy MOV Converter 1.4.24 - 'Enter User Name' Buffer Overflow (SEH)13-06-2017
Easy File Sharing Web Server 7.2 - 'POST' Buffer Overflow12-06-2017
Real Estate Classifieds Script - SQL Injection12-06-2017
Disk Pulse 9.7.26 - 'Add Directory' Local Buffer Overflow12-06-2017
GStreamer gst-plugins-bad Plugin - NULL Pointer Dereference12-06-2017
Sync Breeze 9.7.26 - 'Add Exclude Directory' Local Buffer Overflow11-06-2017
Logpoint < 5.6.4 - Unauthenticated Root Remote Code Execution11-06-2017
Easy File Sharing Web Server 7.2 - Authentication Bypass11-06-2017
DiskBoss 8.0.16 - 'Input Directory' Local Buffer Overflow11-06-2017
WordPress Plugin WP Jobs < 1.5 - SQL Injection11-06-2017
Disk Sorter 9.7.14 - 'Input Directory' Local Buffer Overflow10-06-2017
PaulShop - SQL Injection10-06-2017
VMware vSphere Data Protection 5.x/6.x - Java Deserialization10-06-2017
eCom Cart 1.3 - SQL Injection10-06-2017
libquicktime 1.2.4 - Denial of Service09-06-2017
libcroco 0.6.12 - Denial of Service09-06-2017
Apple macOS - Disk Arbitration Daemon Race Condition09-06-2017
Apple macOS 10.12.3 / iOS < 10.3.2 - Userspace Entitlement Checking Race Condition09-06-2017
Mapscrn 2.03 - Local Buffer Overflow09-06-2017
IPFire 2.19 - Remote Code Execution09-06-2017
EFS Easy Chat Server 3.1 - Password Reset09-06-2017
EFS Easy Chat Server 3.1 - Buffer Overflow (SEH)09-06-2017
EFS Easy Chat Server 3.1 - Password Disclosure09-06-2017
nuevoMailer 6.0 - SQL Injection09-06-2017
CMS Web Design Manchester SQL Injection |[+]08-06-2017
Windows - UAC Protection Bypass via FodHelper Registry Key (Metasploit)08-06-2017
Net Monitor for Employees Pro <= 5.3.4 - Unquoted Service Path Privilege Escalation08-06-2017
Craft CMS 2.6 - Cross-Site Scripting08-06-2017