BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Oracle CTI Web Service - 'EBS_ASSET_HISTORY_OPERATIONS' XML Entity Injection21-05-2019
macOS < 10.14.5 / iOS < 12.3 XNU - Wild-read due to bad cast in stf_ioctl21-05-2019
Brocade Network Advisor 14.4.1 - Unauthenticated Remote Code Execution21-05-2019
Deluge 1.3.15 - 'URL' Denial of Service (PoC)21-05-2019
macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - Loop-Invariant Code Motion (LICM) in DFG JIT Leaves Stack Variable Uninitialized21-05-2019
Deluge 1.3.15 - 'Webseeds' Denial of Service (PoC)21-05-2019
macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register21-05-2019
Moodle Jmol Filter 6.1 - Directory Traversal / Cross-Site Scripting21-05-2019
Huawei eSpace 1.1.11.103 - Image File Format Handling Buffer Overflow20-05-2019
Huawei eSpace Meeting 1.1.11.103 - 'cenwpoll.dll' SEH Buffer Overflow (Unicode)20-05-2019
Huawei eSpace 1.1.11.103 - DLL Hijacking20-05-2019
Linux x86_64 - Delete File Shellcode (28 bytes)20-05-2019
Solaris 10 1/13 (Intel) - 'dtprintinfo' Local Privilege Escalation20-05-2019
Encrypt PDF 2.3 - Denial of Service (PoC)20-05-2019
eLabFTW 1.8.5 - Arbitrary File Upload / Remote Code Execution20-05-2019
Solaris 7/8/9 (SPARC) - 'dtprintinfo' Local Privilege Escalation (2)20-05-2019
GetSimpleCMS - Unauthenticated Remote Code Execution (Metasploit)20-05-2019
BulletProof FTP Server 2019.0.0.50 - 'Storage-Path' Denial of Service (PoC)20-05-2019
Solaris 7/8/9 (SPARC) - 'dtprintinfo' Local Privilege Escalation (1)20-05-2019
BulletProof FTP Server 2019.0.0.50 - 'DNS Address' Denial of Service (PoC)20-05-2019
docPrint Pro 8.0 - Denial of Service (PoC)20-05-2019
PCL Converter 2.7 - Denial of Service (PoC)20-05-2019
Huawei eSpace 1.1.11.103 - 'ContactsCtrl.dll' / 'eSpaceStatusCtrl.dll' ActiveX Heap Overflow20-05-2019
AbsoluteTelnet 10.16 - 'License name' Denial of Service (PoC)20-05-2019
CEWE Photoshow 6.4.3 - 'Password' Denial of Service (PoC)17-05-2019
Interspire Email Marketer&nbsp;6.20 - 'surveys_submit.php' Remote Code Execution17-05-2019
Sandboxie 5.30 - 'Programs Alerts' Denial of Service (PoC)17-05-2019
CEWE Photo Importer 6.4.3 - '.jpg' Denial of Service (PoC)17-05-2019
Iperius Backup 6.1.0 - Privilege Escalation17-05-2019
VMware Workstation 15.1.0 - DLL Hijacking16-05-2019