BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
PHPNuke-Clan <= 4.2.0 (mvcw_conver.php) RFI Vulnerability28-08-2007
PHP <= 5.2.0 (php_iisfunc.dll) Local Buffer Overflow PoC (win32)27-08-2007
Thomson SIP phone ST 2030 Remote Denial of Service Exploit27-08-2007
SomeryC <= 0.2.4 (include.php skindir) Remote File Inclusion Vulnerability27-08-2007
BitchX 1.1 Final MODE Remote Heap Overflow Exploit (0-day)27-08-2007
NVR SP2 2.0 (nvUtility.dll v. 1.0.14.0) SaveXMLFile() Inscure Method27-08-2007
NVR SP2 2.0 (nvUtility.dll v. 1.0.14.0) DeleteXMLFile() Inscure Method27-08-2007
XAMPP for Windows 1.6.3a Local Privilege Escalation Exploit27-08-2007
Arcadem 2.01 Remote SQL Injection - RFI Vulnerabilties27-08-2007
WBB2-Addon: Acrotxt v1 (show) Remote SQL Injection Vulnerability27-08-2007
Mercury-32 v3.32-v4.51 SMTP Pre-Auth EIP Overwrite Exploit26-08-2007
2532|Gigs 1.2.1 (activateuser.php) Local File Inclusion Vulnerability26-08-2007
Mercury-32 v3.32-v4.51 SMTP Pre-Auth EIP Overwrite Exploit26-08-2007
SunShop 4.0 RC 6 (search) Remote Blind SQL Injection Exploit25-08-2007
PHP Perl Extension Safe_mode BypassExploit25-08-2007
SIDVault LDAP Server Preauth Remote Buffer Overflow Exploit25-08-2007
SIDVault LDAP Server Preauth Remote Buffer Overflow Exploit25-08-2007
ProFTPD 1.x (module mod_tls) Remote Buffer Overflow Exploit24-08-2007
ProFTPD 1.x (module mod_tls) Remote Buffer Overflow Exploit24-08-2007
PHP 5.2.3 php_ntuser ntuser_getuserlist() Local Buffer Overflow PoC23-08-2007
Joomla Component NeoRecruit <= 1.4 (id) SQL Injection Vulnerability23-08-2007
Mambo Component RemoSitory (cat) Remote SQL Injection Vulnerability23-08-2007
Joomla Component RSfiles <= 1.0.2 (path) File Download Vulnerability23-08-2007
Joomla Component Nice Talk <= 0.9.3 (tagid) SQL Injection Vulnerability23-08-2007
Joomla Component EventList <= 0.8 (did) SQL Injection Vulnerability23-08-2007
Joomla Component BibTeX <= 1.3 Remote Blind SQL Injection Exploit23-08-2007
PHP FFI Extension 5.0.5 Local Safe_mode Bypass Exploit23-08-2007
Mercury-32 4.51 SMTPD CRAM-MD5 Pre-Auth Remote Overflow Exploit22-08-2007
PHP <= 5.2.3 (php_win32sti) Local Buffer Overflow Exploit22-08-2007
PHP <= 5.2.3 (php_win32sti) Local Buffer Overflow Exploit (2)22-08-2007