BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Oracle <= 9i - 10g (extproc) Local-Remote Command Execution Exploit19-12-2006
WinFtp Server 2.0.2 (PASV) Remote Denial of Service Exploit19-12-2006
PHP-Update <= 2.7 extract() Auth Bypass - Shell Inject Exploit19-12-2006
KDE 3.5 (libkhtml) <= 4.2.0 - Unhandled HTML Parse Exception Exploit19-12-2006
Paristemi 0.8.3b (buycd.php) Remote File Include Vulnerability19-12-2006
phpProfiles <= 3.1.2b Multiple Remote File Include Vulnerabilities19-12-2006
PHPFanBase 2.x (protection.php) Remote File Include Vulnerability19-12-2006
cwmVote 1.0 (archive.php) Remote File Include Vulnerability19-12-2006
Oracle <= 9i - 10g File System Access via utl_file Exploit19-12-2006
cwmCounter 5.1.1 (statistic.php) Remote File Include Exploit19-12-2006
Hewlett-Packard FTP Print Server <= 2.4.5 Buffer Overflow (PoC)19-12-2006
Burak Yilmaz Download Portal (down.asp) SQL Injection Vulnerability19-12-2006
cwmExplorer 1.0 (show_file) Source Code Disclosure Vulnerability19-12-2006
Azucar CMS <= 1.3 (admin-index_sitios.php) File Inclusion Vulnerability18-12-2006
VerliAdmin <= 0.3 (index.php) Remote File Include Exploit18-12-2006
Uploader & Downloader 3.0 (id_user) Remote SQL Injection Vulnerability18-12-2006
MS Office Outlook Recipient Control (ole32.dll) Denial of Service Exploit18-12-2006
wget <= 1.10.2 (Unchecked Boundary Condition) Denial of Service Exploit18-12-2006
RateMe <= 1.3.2 (main.inc.php) Remote File Include Vulnerability18-12-2006
Star FTP Server 1.10 (RETR) Remote Denial of Service Exploit17-12-2006
extreme-fusion <= 4.02 Remote Code Execution Exploit16-12-2006
Bandwebsite <= 1.5 (Login) Remote Add Admin Exploit16-12-2006
mxBB Module WebLinks <= 2.05 Remote Inclusion Vulnerability16-12-2006
mxBB Module Charts <= 1.0.0 Remote File Inclusion Vulnerability16-12-2006
mxBB Module Meeting <= 1.1.2 Remote FileInclusion Vulnerability16-12-2006
OpenLDAP <= 2.4.3 (KBIND) Remote Buffer Overflow Exploit15-12-2006
Sambar FTP Server 6.4 (SIZE) Remote Denial of Service Exploit15-12-2006
Windows Media Player 9-10 (MID File) Denial Of Service Exploit15-12-2006
GNU InetUtils ftpd 1.4.2 (ld.so.preload) Remote Root Exploit15-12-2006
OpenLDAP <= 2.4.3 (KBIND) Remote Buffer Overflow Exploit15-12-2006