BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
CCProxy <= v6.2 Telnet Proxy Ping Overflow Exploit (meta)03-09-2007
Weblogicnet (files_dir) Multiple Remote File Inclusion Vulnerabilities02-09-2007
Yvora CMS 1.0 (error_view.php ID) Remote SQL Injection Vulnerability02-09-2007
Virtual DJ 5.0 (m3u File) Local Buffer OverFlow Exploit02-09-2007
OTSTurntables 1.00 (m3u File) Local Buffer Overflow Exploit02-09-2007
Joomla! 1.5 Beta1-Beta2-RC1 Remote SQL Injection Exploit01-09-2007
Yahoo! Messenger (YVerInfo.dll <= 2007.8.27.1) ActiveX BoF Exploit01-09-2007
Solaris 10 x86-sparc sysinfo Kernel Memory Disclosure Exploit01-09-2007
phpBB Links MOD 1.2.2 Remote SQL Injection Exploit31-08-2007
Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit31-08-2007
PPStream (PowerPlayer.dll 2.0.1.3829) Activex Remote Overflow Exploit31-08-2007
CKGold Shopping Cart 2.0 (category.php) Blind SQL Injection Exploit31-08-2007
NMDeluxe 2.0.0 (id) Remote SQL Injection Vulnerability30-08-2007
Ourspace 2.0.9 (uploadmedia.cgi) Remote File Upload Vulnerability30-08-2007
Hexamail Server 3.0.0.001 (pop3) pre-auth Remote Overflow PoC30-08-2007
Norman Virus Control nvcoaft51.sys ioctl BF672028 Exploit30-08-2007
MSN messenger 7.x (8.0?) VIDEO Remote Heap Overflow Exploit29-08-2007
Yahoo! Messenger 8.1.0.413 (webcam) Remote Crash Exploit29-08-2007
xGB 2.0 (xGB.php) Remote Permission Bypass Vulnerability29-08-2007
MS Windows (GDI32.DLL) Denial of Service Exploit (MS07-046)29-08-2007
ABC estore 3.0 (cat_id) Remote Blind SQL Injection Exploit29-08-2007
PHPNS 1.1 (shownews.php id) Remote SQL Injection Vulnerability29-08-2007
phpBG 0.9.1 (rootdir) Remote File Inclusion Vulnerabilities29-08-2007
Pakupaku CMS <= 0.4 Remote File Upload - LFI Vulnerability29-08-2007
NVR SP2 2.0 (nvUnifiedControl.dll v. 1.1.45.0)SetText() Remote Exploit28-08-2007
Postcast Server Pro 3.0.61 - Quiksoft EasyMail (emsmtp.dll 6.0.1) BoF28-08-2007
Micro CMS 3.5 (revert-content.php) Remote SQL Injection Vulnerability28-08-2007
ACG News 1.0 (aid-catid) Remote SQL Injection Vulnerabilities28-08-2007
DL PayCart 1.01 (viewitem.php ItemID) Blind SQL Injection Exploit28-08-2007
VWar <= v1.5.0 R15 (mvcw.php) Remote File Inclusion Vulnerability28-08-2007