BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Acer LunchApp.APlunch (ActiveX Control) Command Execution Exploit30-11-2006
PHPGraphy 0.9.12 Privilege Escalation - Commands Execution Exploit30-11-2006
Serendipity <= 1.0.3 (comment.php) Local File Include Exploit30-11-2006
VUPlayer <= 2.44 (M3U UNC Name) Buffer Overflow Exploit (meta)30-11-2006
LDU <= 8.x (polls.php) Remote SQL Injection Vulnerability30-11-2006
VUPlayer <= 2.44 (M3U UNC Name) Buffer Overflow Exploit (c)30-11-2006
AtomixMP3 <= 2.3 Malformed M3U Buffer Overflow Exploit30-11-2006
NetBSD FTPd - tnftpd Remote Stack Overflow PoC30-11-2006
3Com TFTP Service <= 2.0.1 (Long Transporting Mode) Overflow Exploit30-11-2006
Kubix <= 0.7 Multiple Remote Vulnerabilities Exploit29-11-2006
b2evolution 1.8.5 - 1.9b (import-mt.php) Remote File Include Vulnerability29-11-2006
Evince Document Viewer (DocumentMedia) Buffer Overflow Exploit28-11-2006
Discuz! 4.x SQL Injection - Admin Credentials Disclosure Exploit28-11-2006
Quintessential Player <= 4.50.1.82 (Playlist) Denial of Service PoC28-11-2006
Songbird Media Player <= 0.2 Format String Denial of Service PoC28-11-2006
P-News v2 (user.txt) Remote Password Disclosure Vulnerability28-11-2006
AT-TFTP <= 1.9 (Long Filename) Remote Buffer Overflow PoC27-11-2006
3Com TFTP Service <= 2.0.1 (Long Transporting Mode) Overflow PoC27-11-2006
ProFTPD 1.3.0 (sreplace) Remote Stack Overflow Exploit (meta)27-11-2006
PHP <= 4.4.4-5.1.6 htmlentities() Local Buffer Overflow PoC27-11-2006
ProFTPD 1.3.0 (sreplace) Remote Stack Overflow Exploit (meta)27-11-2006
Hacks List phpBB Mod <= 1.21 Remote SQL Injection Vulnerability26-11-2006
com_flyspray Mambo Com. <= 1.0.1 Remote File Disclosure Vulnerability26-11-2006
SimpleBlog <= 2.3 (admin-edit.asp) Remote SQL Injection Vulnerability26-11-2006
Liberum Help Desk <= 0.97.3 (details.asp) SQL Injection Vulnerability25-11-2006
Sisfo Kampus <= 0.8 Remote File Inclusion - Download Vulnerabilities25-11-2006
Basic Forum <= 1.1 (edit.asp) Remote SQL Injection Vulnerability25-11-2006
ASP-Nuke Community <= 1.5 Cookie Privilege Escalation Vulnerability25-11-2006
Exhibit Engine <= 1.22 (styles.php) Remote File Include Vulnerability25-11-2006
Woltlab Burning Board Lite 1.0.2 decode_cookie() SQL Injection Exploit24-11-2006