BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Black Lily 2007 (products.php class) Remote SQL Injection Vulnerability22-09-2007
IPSwitch IMail Server 8.0x Remote Heap Overflow Exploit21-09-2007
neuron news 1.0 (index.php q) Local File Inclusion Vulnerability21-09-2007
Joomla Component com_slideshow Remote File Inclusion Vulnerability21-09-2007
iziContents <= RC6 (RFI-LFI) Multiple Remote Vulnerabilities21-09-2007
CMS Made Simple 1.2 Remote Code Execution Vulnerability21-09-2007
IPSwitch IMail Server 8.0x Remote Heap Overflow Exploit21-09-2007
phpBB Plus <= 1.53 (phpbb_root_path) Remote File Inclusion Vuln20-09-2007
Flip <= 3.0 Remoe Admin Creation Exploit20-09-2007
Flip <= 3.0 Remote Password Hash Disclosure Exploit20-09-2007
Lighttpd <= 1.4.17 FastCGI Header Overflow Remote Exploit20-09-2007
Lighttpd <= 1.4.17 FastCGI Header Overflow Remote Exploit20-09-2007
jetAudio 7.x ActiveX DownloadFromMusicStore() Code Execution Exploit19-09-2007
Yahoo! Messenger 8.1.0.421 CYFT Object Arbitrary File Download19-09-2007
Mercury-32 4.52 IMAPD SEARCH command Post-Auth Overflow Exploit19-09-2007
Streamline PHP Media Server 1.0-beta4 RFI Vulnerability19-09-2007
Microsoft Visual Basic Enterprise Edition 6.0 SP6 Code Execution Exploit19-09-2007
Sun jre1.6.0_X isInstalled.dnsResolve Function Overflow PoC19-09-2007
OneCMS 2.4 (userreviews.php abc) Remote SQL Injection Exploit19-09-2007
Mercury-32 4.52 IMAPD SEARCH command Post-Auth Overflow Exploit19-09-2007
MW6 Technologies QRCode ActiveX 3.0 Remote File Overwrite Exploit18-09-2007
phpsyncml <= 0.1.2 Remote File Include Vulnerabilities18-09-2007
KwsPHP 1.0 sondages Module Remote SQL Injection Vulnerability18-09-2007
modifyform (modifyform.html) Remote File Inclusion Vulnerability18-09-2007
Apple Quicktime -w IE .qtl Version XAS Remote Exploit PoC18-09-2007
phpBB Mod Ktauber.com StylesDemo Blind SQL Injection Exploit18-09-2007
Airsensor M520 HTTPD Remote Preauth DoS - BOF PoC18-09-2007
Shop-Script FREE <= 2.0 Remote Command Execution Exploit17-09-2007
Joomla Component joom12Pic 1.0 Remote File Inclusion Vulnerability16-09-2007
SimpCMS <= all (keyword) Remote SQL Injection Vulnerability16-09-2007