BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Omnistar Article Manager Software (article.php) SQL Injection Exploit16-09-2007
Chupix CMS 0.2.3 (download.php) Remote File Disclosure Vulnerability15-09-2007
KwsPHP 1.0 (login.php) Remote SQL Injection Exploit15-09-2007
KwsPHP 1.0 Member_Space Module SQL Injection Exploit15-09-2007
KwsPHP 1.0 stats Module Remote SQL Injection Exploit15-09-2007
Joomla Component Flash Fun! 1.0 Remote File Inclusion Vulnerability15-09-2007
Wordpress Multiple Versions Pwnpress Exploitation Tookit (0.2pub)14-09-2007
Ajax File Browser 3b (settings.inc.php approot) RFI Vulnerability14-09-2007
phpFFL 1.24 PHPFFL_FILE_ROOT Remote File Inclusion Vulnerabilities14-09-2007
PHP Webquest <= 2.5 (id_actividad) Remote SQL Injection Exploit14-09-2007
JBlog 1.0 (index.php id) Remote SQL Injection Exploit14-09-2007
HP ActiveX (hpqutil.dll ListFiles hpqutil.dll) Remote Heap Overflow PoC14-09-2007
Gelato (index.php post) Remote SQL Injection Exploit14-09-2007
KwsPHP Module jeuxflash 1.0 (id) Remote SQL Injection Vulnerability13-09-2007
Joomla Component joomlaradio v5 Remote File Inclusion Vulnerability13-09-2007
Wordpress Multiple Versions Pwnpress Exploitation Tookit (gui version)13-09-2007
JetCast Server 2.0.0.4308 Remote Denial of Service Exploit13-09-2007
GForge < 4.6b2 (skill_delete) Remote SQL Injection Vulnerability13-09-2007
Microsoft SQL Server Distributed Management Objects BoF Exploit12-09-2007
Apple Quicktime (Multiple Browsers) Command Execution PoC (0day)12-09-2007
Microsoft Visual Studio 6.0 (PDWizard.ocx) Remote Command Execution11-09-2007
Microsoft Visual Studio 6.0 (VBTOVSI.DLL 1.0.0.0) File Overwrite Exploit11-09-2007
NuclearBB Alpha 2 (root_path) Remote File Inclusion Vulnerability11-09-2007
X-Cart <= ? Multiple Remote File Inclusion Vulnerabilities11-09-2007
Sisfo Kampus 2006 (dwoprn.php f) Remote File Download Vulnerability10-09-2007
phpRealty 0.02 (MGR) Multiple Remote File Inclusion Vulnerabilities10-09-2007
Ultra Crypto Component (CryptoX.dll <= 2.0) SaveToFile() Inscure Method10-09-2007
Ultra Crypto Component (CryptoX.dll <= 2.0) Remote BoF Exploit10-09-2007
AuraCMS 2.1 Remote File Attachment - LFI Vulnerabilities10-09-2007
Lighttpd <= 1.4.16 FastCGI Header Overflow Remote Exploit10-09-2007