BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Softbiz Auctions Script product_desc.php Remote SQL Injection Vuln11-11-2007
Softbiz Ad Management plus Script ver 1 Remote SQL Injection Vuln11-11-2007
Softbiz Banner Exchange Network Script 1.0 SQL Injection Vulnerability11-11-2007
Softbiz Link Directory Script Remote SQL Injection Vulnerability11-11-2007
jPORTAL <= 2.3.1 articles.php Remote SQL Injection Vulnerability09-11-2007
MySQL <= 5.0.45 (Alter) Denial of Service Vulnerability09-11-2007
Adobe Shockwave ShockwaveVersion() Stack Overflow PoC08-11-2007
IBM AIX <= 5.3.0 setlocale() Local Privilege Escalation Exploit07-11-2007
Viewpoint Media Player for IE 3.2 Remote Stack Overflow PoC06-11-2007
jPORTAL 2 mailer.php Remote SQL Injection Vulnerability06-11-2007
JBC Explorer <= 7.20 RC 1 Remote Code Execution Exploit05-11-2007
ASP Message Board 2.2.1c Remote SQL Injection Vulnerability05-11-2007
Vortex Portal 1.0.42 Remote File Inclusion Vulnerabilities04-11-2007
nuBoard 0.5 (index.php site) Remote File Inclusion Vulnerability04-11-2007
syndeoCMS 2.5.01 (cmsdir) Remote File Inclusion Vulnerability04-11-2007
GuppY 4.6.3 (includes.inc selskin) Remote File Inclusion Vulnerability03-11-2007
Quick and Dirty Blog 0.4 (categories.php) Local File Inclusion Vuln03-11-2007
scWiki 1.0 Beta 2 (common.php pathdot) Remote File Inclusion Vuln03-11-2007
Synergiser <= 1.2 RC1 Local File Inclusion - Full Path Disclosure02-11-2007
Scribe <= 0.2 Remote PHP Code Execution Vulnerability02-11-2007
DM Guestbook <= 0.4.1 Multiple Local File Inclusion Vulnerabilities02-11-2007
EDraw Flowchart ActiveX Control 2.0 Insecure Method Exploit02-11-2007
Ax Developer CMS 0.1.1 (index.php module) Local File Inclusion Vuln02-11-2007
Firefly Media Server <= 0.2.4 Remote Denial of Service Exploit02-11-2007
Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit02-11-2007
WordPress Plugin BackUpWordPress <= 0.4.2b RFI Vulnerability01-11-2007
SonicWall SSL-VPN NeLaunchCtrl ActiveX Control Remote Exploit01-11-2007
phpMyConferences <= 8.0.2 Remote File Disclosure Vulnerability31-10-2007
ModuleBuilder V1.0 (file) Remote File Disclosure Vulnerability31-10-2007
ISPworker 1.21 download.php Remote File Disclosure Vulnerability31-10-2007