BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
LeadTools JPEG 2000 COM Object Remote Stack Overflow Exploit18-05-2007
LeadTools Thumbnail Browser Control (lttmb14E.ocx) Remote BoF Exploit18-05-2007
LeadTools Raster Thumbnail Object Library (LTRTM14e.DLL) BoF Exploit18-05-2007
Mambo com_yanc 1.4 beta (id) Remote SQL Injection Vulnerability17-05-2007
MagicISO <= 5.4(build239) .cue File Heap Overflow PoC17-05-2007
GeekLog 2.x ImageImageMagick.php Remote File Inclusion Vulnerability17-05-2007
Build it Fast (bif3) 0.4.1 Multiple Remote File Inclusion Vulnerabilities17-05-2007
Glossword 1.8.1 custom_vars.php Remote File Inclusion Vulnerability16-05-2007
RunawaySoft Haber portal 1.0 (tr) Multiple Remote Vulnerabilities16-05-2007
PrecisionID Barcode ActiveX 1.9 Remote Denial of Service Exploit16-05-2007
PrecisionID Barcode ActiveX 1.9 Remote Arbitrary File Overwrite Exploit16-05-2007
CA BrightStor Backup 11.5.2.0 caloggderd.exe Denial of Service Exploit16-05-2007
CA BrightStor Backup 11.5.2.0 Mediasvr.exe Denial of Service Exploit16-05-2007
PHPGlossar 0.8 (format_menue) Remote File Inclusion Vulnerabilities16-05-2007
SimpNews <= 2.40.01 (print.php newnr) Remote SQL Injection Exploit16-05-2007
FAQEngine <= 4.16.03 (question.php questionref) SQL Injection Exploit16-05-2007
MS Windows Vista forged ARP packet Network Stack DoS Exploit15-05-2007
DeWizardX (DEWizardAX.ocx) Arbitrary File Overwrite Exploit15-05-2007
Achievo 1.1.0 (atk.inc config_atkroot) Remote File Inclusion Vulnerability15-05-2007
BitsCast 0.13.0 (invalid string) Remote Denial of Service Exploit15-05-2007
NewzCrawler 1.8 (invalid string) Remote Denial of Service Exploit15-05-2007
XOOPS Module resmanager <= 1.21 BLIND SQL Injection Exploit15-05-2007
XOOPS Module Glossarie <= 1.7 (sid) Remote SQL Injection Exploit15-05-2007
XOOPS Module MyConference 1.0 (index.php) SQL Injection Exploit15-05-2007
Eudora 7.1 SMTP ResponseRemote Remote Buffer Overflow Exploit15-05-2007
EfesTECH Haber 5.0 (id) Remote SQL Injection Vulnerability14-05-2007
NagiosQL 2005 2.00 (prepend_adm.php) Remote File Inclusion Vuln14-05-2007
Feindt Computerservice News 2.0 (newsadmin.php action) RFI Vuln14-05-2007
Clever Database Comparer ActiveX 2.2 Remote Buffer Overflow PoC14-05-2007
webdesproxy 0.0.1 (GET Request) Remote Root Exploit (exec-shield)14-05-2007