BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Acunetix WVS <= 4.0 20060717 HTTP Sniffer Component Remote DoS04-01-2007
Aratix <= 0.2.2b11 (inc-init.inc.php) Remote File Include Vulnerability04-01-2007
iLife iPhoto Photocast (XML title) Remote Format String PoC04-01-2007
DigiRez <= 3.4 (book_id) Remote SQL Injection Exploit04-01-2007
Microsoft Vista (NtRaiseHardError) Privilege Escalation Exploit03-01-2007
Apple Quicktime (rtsp URL Handler) Buffer Overflow Exploit (win2k)03-01-2007
LocazoList <= 2.01a beta5 (subcatID) Remote SQL Injection Vulnerability03-01-2007
E-SMARTCART 1.0 (product_id) Remote SQL Injection Vulnerability03-01-2007
VerliAdmin <= 0.3 (language.php) Local File Inclusion Exploit03-01-2007
Simple Web Content Management System Remote SQL Injection Exploit03-01-2007
Apple Quicktime <= 7.1.3 (HREFTrack) Cross-Zone Scripting Exploit03-01-2007
VLC Media Player 0.8.6 (udp:--) Format String Exploit PoC (ppc)02-01-2007
VLC Media Player 0.8.6 (udp:--) Format String Exploit (x86)02-01-2007
RBlog 1.0 (admin.mdb) Remote Password Disclosure Vulnerablity01-01-2007
Vizayn Haber (haberdetay.asp id variable) SQL Injection Vulnerability01-01-2007
autoDealer <= 2.0 (detail.asp iPro) Remote SQL Injection Vulnerability01-01-2007
Formbankserver 1.9 (Name) Directory Transversal Vulnerability01-01-2007
Apple Quicktime (rtsp URL Handler) Stack Buffer Overflow Exploit01-01-2007
WWWBoard 2.0 (passwd.txt) Remote Password Disclosure Vulnerability01-01-2007
newsCMSlite (newsCMS.mdb) Remote Password Disclosure Vulnerability01-01-2007
QK SMTP <= 3.01 (RCPT TO) Remote Buffer Overflow Exploit (pl)01-01-2007
TaskTracker <= 1.5 (Customize.asp) Remote Add Administrator Exploit01-01-2007
QK SMTP <= 3.01 (RCPT TO) Remote Buffer Overflow Exploit (pl)01-01-2007
MS Windows NtRaiseHardError Csrss.exe-winsrv.dll Double Free31-12-2006
Vz (Adp) Forum 2.0.3 Remote Password Disclosure Vulnerablity31-12-2006
P-News 1.16 - 1.17 (user.dat) Remote Password Disclosure Vulnerablity31-12-2006
WinZIP 10.0 FileView ActiveX Controls Remote Overflow Exploit31-12-2006
Formbankserver 1.9 (Name) Remote Denial of Service Exploit31-12-2006
MDForum <= 2.0.1 (PNSVlang) Remote Code Execution Exploit31-12-2006
Rediff Bol Downloader (ActiveX Control) Execute Local File Exploit31-12-2006