BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!

Last Advisories
Cisco Wireless Controller 3.6.10E - Cross-Site Request Forgery24-07-2019
Apple iMessage - DigitalTouch tap Message Processing Out-of-Bounds Read24-07-2019
Trend Micro Deep Discovery Inspector IDS - Security Bypass24-07-2019
Linux Kernel 4.10 < 5.1.17 - 'PTRACE_TRACEME' pkexec Local Privilege Escalation24-07-2019
BACnet Stack 0.8.6 - Denial of Service22-07-2019
Comtrend-AR-5310 - Restricted Shell Escape22-07-2019
Axway SecureTransport 5 - Unauthenticated XML Injection22-07-2019
Docker - Container Escape19-07-2019
Web Ofisi Firma 13 - 'oz' SQL Injection19-07-2019
REDCap < 9.1.2 - Cross-Site Scripting19-07-2019
Qualcomm Android - Kernel Use-After-Free via Incorrect set_page_dirty() in KGSL29-05-2019
Spidermonkey - IonMonkey Leaks JS_OPTIMIZED_OUT Magic Value to Script29-05-2019
pfSense 2.4.4-p3 (ACME Package 0.59_14) - Persistent Cross-Site Scripting29-05-2019
Spidermonkey - IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation29-05-2019
Oracle Application Testing Suite - WebLogic Server Administration Console War Deployment (Metasploit)29-05-2019
Free SMTP Server 2.5 - Denial of Service (PoC)29-05-2019
Phraseanet < 4.0.7 - Cross-Site Scripting28-05-2019
EquityPandit 1.0 - Password Disclosure28-05-2019
Petraware pTransformer ADC < - Login Bypass28-05-2019
Deltek Maconomy 2.2.5 - Local File Inclusion27-05-2019
Pidgin 2.13.0 - Denial of Service (PoC)27-05-2019
Typora - Directory Traversal27-05-2019
Opencart - 'extension/feed/google_base' Denial of Service PoC24-05-2019
Cyberoam SSLVPN Client - 'HTTP Proxy' Denial of Service (PoC)24-05-2019
Fast AVI MPEG Joiner - 'License Name' Denial of Service (PoC)24-05-2019
Cyberoam SSLVPN Client - 'Connect To Server' Denial of Service (PoC)24-05-2019
Microsoft Internet Explorer Windows 10 1809 17763.316 - Scripting Engine Memory Corruption24-05-2019
Cyberoam Transparent Authentication Suite - 'Fully Qualified Domain Name' Denial of Service (PoC)24-05-2019
Cyberoam Transparent Authentication Suite - 'NetBIOS Name' Denial of Service (PoC)24-05-2019
Axessh 4.2 - 'Log file name' Local Stack-based Buffer Overflow24-05-2019