BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
SAP DB 7.4 WebTools Remote SEH overwrite Exploit07-07-2007
NeoTracePro 3.25 ActiveX TraceTarget() Remote BoF Exploit07-07-2007
GameSiteScript <= 3.1 (profile id) Remote SQL Injection Vulnerability07-07-2007
Chilkat Zip ActiveX Component 12.4 Multiple Insecure Methods Exploit07-07-2007
SAP DB 7.4 WebTools Remote SEH overwrite Exploit07-07-2007
ViRC 2.0 (JOIN Response) Remote SEH Overwrite Exploit 0day06-07-2007
phpVID 0.9.9 (categories_type.php cat) SQL Injection Vulnerability06-07-2007
eMeeting Online Dating Software 5.2 SQL Injection Vulnerabilities06-07-2007
HP Digital Imaging (hpqvwocx.dll v. 2.1.0.556) SaveToFile() Exploit06-07-2007
LimeSurvey (PHPSurveyor) 1.49RC2 Remote File Inclusion Vulnerability06-07-2007
EnjoySAP ActiveX kweditcontrol.kwedit.1 Remote Stack Overflow PoC05-07-2007
EnjoySAP ActiveX rfcguisink.rfcguisink.1 Remote Heap Overflow PoC05-07-2007
VRNews 1.1.1 (admin.php) Remote Permission Bypass Vulnerability05-07-2007
AsteriDex <= 3.0 Remote (callboth.php) Remote Code Execution Exploit05-07-2007
SuperCali PHP Event Calendar 0.4.0 SQL Injection Vulnerability03-07-2007
Girlserv ads <= 1.5 (details_news.php) SQL Injection Vulnerability03-07-2007
AXIS Camera Control (AxisCamControl.ocx v. 1.0.2.15) BoF Exploit03-07-2007
MyCMS <= 0.9.8 Remote Command Execution Exploit (2 method)03-07-2007
MyCMS <= 0.9.8 Remote Command Execution Exploit03-07-2007
ESRI ArcSDE 9.0 - 9.2sp1 Remote Buffer Overflow Exploit03-07-2007
PNphpBB2 <= 1.2i viewforum.php Remote SQL Injection Exploit03-07-2007
ESRI ArcSDE 9.0 - 9.2sp1 Remote Buffer Overflow Exploit03-07-2007
YouTube Clone Script (msg.php id) Remote SQL Injection Vulnerability02-07-2007
HP Instant Support (Driver Check) Remote Buffer Overflow Exploit PoC02-07-2007
AV Arcade 2.1b (index.php id) Remote SQL Injection Vulnerability02-07-2007
PHPDirector <= 0.21 (videos.php id) Remote SQL Injection Vulnerability02-07-2007
vbzoom 1.x (forum.php MainID) Remote SQL Injection Vulnerability02-07-2007
ArcadeBuilder Game Portal Manager 1.7 Remote SQL Injection Vuln01-07-2007
Easybe 1-2-3 Music Store (process.php) Remote SQL Injection Vuln01-07-2007
phpEventCalendar <= 0.2.3 (eventdisplay.php) SQL Injection Exploit01-07-2007