BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
3proxy 0.5.3g logurl() Remote Buffer Overflow Exploit (win32) (pl)18-12-2007
Samba 3.0.27a send_mailslot() Remote Buffer Overflow PoC14-12-2007
123tkShop 0.9.1 Remote Authentication Bypass Vulnerability14-12-2007
Anon Proxy Server 0.1000 Remote Command Execution Vulnerability14-12-2007
Oreon 1.4 - Centreon 1.4.1 Multiple RFI Vulnerabilties14-12-2007
Form Tools 1.5.0b Multiple Remote File Inclusion Vulnerabilities14-12-2007
PHP Real Estate (fullnews.php id) Remote SQL Injection Vulnerability14-12-2007
CityWriter 0.9.7 head.php Remote File Inclusion Vulnerability13-12-2007
CMS Galaxie Software (category_id) Remote SQL Injection Vulnerability13-12-2007
MMS Gallery PHP 1.0 (id) Remote File Disclosure Vulnerability13-12-2007
xml2owl 0.1.1 (filedownload.php) Remote File Disclosure Vulnerability13-12-2007
Hosting Controller 6.1 Hot fix <= 3.3 Multiple Remote Vulnerabilities13-12-2007
Adult Script <= 1.6 Unauthorized Administrative Access Exploit13-12-2007
Apple Mac OS X xnu <= 1228.0 Local kernel Denial of Service PoC12-12-2007
HP OpenView Network Node Manager 07.50 CGI Remote BoF Exploit12-12-2007
Fastpublish CMS 1.9999 config[fsBase] RFI Vulnerability12-12-2007
HP OpenView Network Node Manager 07.50 CGI Remote BoF Exploit12-12-2007
Online Media Technologies AVSMJPEGFILE.DLL 1.1 Remote BoF PoC11-12-2007
Simple HTTPD <= 1.41 (-aux) Remote Denial of Service Exploit11-12-2007
SquirrelMail G-PGP Plugin deletekey() Command Injection Exploit11-12-2007
Mcms Easy Web Make (index.php template) Local File Inclusion Vuln11-12-2007
HP Compaq Notebooks ActiveX Remote Code Execution Exploit11-12-2007
Wordpress <= 2.3.1 Charset Remote SQL Injection Vulnerability11-12-2007
ViArt CMS-Shop-HelpDesk 3.3.2 Remote File Inclusion Vulnerability11-12-2007
Lotfian.com DATABASE DRIVEN TRAVEL SITE SQL Injection Vuln10-12-2007
Falt4 CMS RC4 10.9.2007 Multiple Remote Vulnerabilities10-12-2007
Falcon CMS 1.4.3 (RFI-XSS) Multiple Remote Vulnerabilities10-12-2007
BarracudaDrive <= 3.7.2 Multiple Remote Vulnerabilities10-12-2007
MonAlbum 0.87 Upload Shell - Password Grabber Exploit10-12-2007
BadBlue <= 2.72b Multiple Remote Vulnerabilities10-12-2007