BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Enthrallweb eHomes 1.0 Multiple (SQL-XSS) Vulnerabilities23-12-2006
Enthrallweb eJobs (newsdetail.asp) Remote SQL Injection Exploit23-12-2006
Enthrallweb eCars 1.0 (types.asp) Remote SQL Injection Vulnerability23-12-2006
Enthrallweb emates 1.0 (newsdetail.asp) Remote SQL Injection Exploit23-12-2006
Enthrallweb ePages (actualpic.asp) Remote SQL Injection Exploit23-12-2006
Dragon Business Directory <= 3.01.12 (ID) SQL Injection Vulnerability23-12-2006
Calendar MX BASIC <= 1.0.2 (ID) Remote SQL Injection Vulnerability23-12-2006
Enthrallweb eClassifieds 1.0 Remote User Pass Change Exploit23-12-2006
Enthrallweb eCoupons 1.0(myprofile.asp) Remote Pass Change Exploit23-12-2006
Enthrallweb eNews 1.0 Remote User Pass Change Exploit23-12-2006
XM Easy Personal FTP Server 5.2.1 (USER) Format String DoS Exploit22-12-2006
KISGB <= 5.1.1 (authenticate.php) Remote File Include Vulnerability22-12-2006
EternalMart Guestbook 1.10 (admin-auth.php) Remote Inclusion Vuln22-12-2006
3editor CMS <= 0.42 (index.php) Local File Include Vulnerability22-12-2006
Php-Mysql Site Builder 0.0.2 (htm2php.php) File Disclosure Vulnerability21-12-2006
Newxooper-php 0.9.1 (mapage.php) Remote File Include Vulnerability21-12-2006
PgmReloaded <= 0.8.5 Multiple Remote File Include Vulnerabilities21-12-2006
DREAM FTP Server 1.0.2 (PORT) Remote Denial of Service Exploit21-12-2006
PowerClan <= 1.14a (footer.inc.php) Remote File Include Vulnerability21-12-2006
Http explorer Web Server 1.02 Directory Transversal Vulnerability21-12-2006
Ixprim CMS 1.2 Remote Blind SQL Injection Exploit21-12-2006
inertianews 0.02b (inertianews_main.php) Remote Include Vulnerability21-12-2006
MKPortal M1.1.1 (Urlobox) Cross Site Request Forgery Vulnerability21-12-2006
Valdersoft Shopping Cart 3.0 Multiple Remote File Include Vulnerabilities20-12-2006
TextSend <= 1.5 (config-sender.php) Remote File Include Vulnerability20-12-2006
RealPlayer 10.5 (ActiveX Control) Denial of Service Exploit20-12-2006
MS Windows (MessageBox) Memory Corruption Local Denial of Service20-12-2006
PHP Advanced Transfer Manager <= 1.30 Source Code Disclosure Exploit20-12-2006
Intel 2200BG 802.11 Beacon frame Kernel Memory Corruption Exploit19-12-2006
DeepBurner 1.8.0 .dbr File Parsing Buffer Overflow Exploit19-12-2006