BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Dart Communications PowerTCP Service Control Remote BoF Exploit24-05-2007
FirmWorX 0.1.2 Multiple Remote File Inclusion Vulnerabilities24-05-2007
NavBoard 2.6.0 Remote Code Execution Exploit23-05-2007
Scallywag (template.php path) Remote File Inclusion Vulnerabilities23-05-2007
Microsoft Office 2000 (OUACTRL.OCX v. 1.0.1.9) Remote DoS Exploit23-05-2007
Dokeos <= 1.8.0 (my_progress.php course) Remote SQL Injection Exploit23-05-2007
MagicISO <= 5.4 (build239) .cue File Local Buffer Overflow Exploit23-05-2007
Microsoft Visual Basic 6.0 Project (Company Name) Stack overflow PoC23-05-2007
Microsoft Visual Basic 6.0 Project (Description) Stack overflow PoC23-05-2007
KSign KSignSWAT <= 2.0.3.3 ActiveX Control Remote BoF Exploit22-05-2007
LeadTools ISIS Control (ltisi14E.ocx v.14.5.0.44) Remote DoS Exploit22-05-2007
BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability22-05-2007
Wordpress 2.1.3 admin-ajax.php SQL Injection Blind Fishing Exploit21-05-2007
LeadTools Raster Variant (LTRVR14e.dll) Remote File Overwrite Exploit21-05-2007
Ol Bookmarks Manager 0.7.4 (root) Remote File Inclusion Vulnerabilities21-05-2007
TutorialCMS <= 1.01 Authentication Bypass Vulnerability21-05-2007
Ol Bookmarks Manager 0.7.4 Remote SQL Injection Vulnerability21-05-2007
Microsoft IIS 6.0 (-AUX-.aspx) Remote Denial of Service Exploit21-05-2007
Pegasus ImagN ActiveX Control Remote Buffer Overflow Exploit21-05-2007
Virtual CD 9.0.0.2 (vc9api.DLL) Remote Shell Commands Execution Exploit21-05-2007
Zomplog <= 3.8 (mp3playlist.php speler) Remote SQL Injection Exploit20-05-2007
AlstraSoft E-Friends <= 4.21 Admin Session Retrieve Exploit20-05-2007
AlstraSoft Live Support v1.21 Admin Credential Retrieve Exploit20-05-2007
AlstraSoft Template Seller Pro <= 3.25 Admin Password Change Exploit20-05-2007
AlstraSoft Template Seller Pro <= 3.25 Remote Code Execution Exploit20-05-2007
SunLight CMS 5.3 (root) Remote File Inclusion Vulnerabilities19-05-2007
Rational Software Hidden Administrator 1.7 Auth Bypass Exploit19-05-2007
Rational Software Hidden Administrator 1.7 Auth Bypass Exploit19-05-2007
Libstats <= 1.0.3 (template_csv.php) Remote File Inclusion Vulnerability18-05-2007
MolyX BOARD 2.5.0 (index.php lang) Local File Inclusion Vulnerability18-05-2007