BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
IBM eGatherer <= 3.20.0284.0 (ActiveX) Remote Code Execution Exploit29-08-2006
Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 229-08-2006
MS Windows NetpIsRemote() Remote Overflow Exploit (MS06-040) (2)28-08-2006
Cybozu Products (id) Arbitrary File Retrieval Vulnerability28-08-2006
Cybuzu Garoon 2.1.0 Multiple Remote SQL Injection Vulnerabilities28-08-2006
e107 <= 0.75 (GLOBALS Overwrite) Remote Code Execution Exploit28-08-2006
Web3news <= 0.95 (PHPSECURITYADMIN_PATH) Remote Include Vuln28-08-2006
MS Windows NetpIsRemote() Remote Overflow Exploit (MS06-040) (2)28-08-2006
AlberT-EasySite <= 1.0a5 (PSA_PATH) Remote File Include Exploit27-08-2006
iziContents <= RC6 GLOBALS[] Remote Code Execution Exploit27-08-2006
CMS Frogss <= 0.4 (podpis) Remote SQL Injection Exploit27-08-2006
Ay System CMS <= 2.6 (main.php) Remote File Include Vulnerability27-08-2006
VMware 5.5.1 (ActiveX) Local Buffer Overflow Exploit27-08-2006
MDaemon POP3 Server < 9.06 (USER) Remote Heap Overflow Exploit26-08-2006
proManager <= 0.73 (note.php) Remote SQL Injection Vulnerability26-08-2006
MDaemon POP3 Server < 9.06 (USER) Remote Heap Overflow Exploit26-08-2006
eFiction < 2.0.7 Remote Admin Authentication Bypass Vulnerability25-08-2006
Integramod Portal <= 2.0 rc2 (phpbb_root_path) Remote File Include25-08-2006
CliServ Web Community <= 0.65 (cl_headers) Include Vulnerability25-08-2006
Wikepage Opus 10 <= 2006.2a (lng) Remote Command Execution Exploit24-08-2006
Phaos <= 0.9.2 basename() Remote Command Execution Exploit24-08-2006
phpCOIN 1.2.3 (session_set.php) Remote Include Vulnerability24-08-2006
MercuryBoard <= 1.1.4 (User-Agent) Remote SQL Injection Exploit23-08-2006
phpBB All Topics Mod <= 1.5.0 (start) Remote SQL Injection Exploit23-08-2006
pSlash 0.7 (lvc_include_dir) Remote File Include Vulnerability23-08-2006
Integramod Portal <= 2.x (functions_portal.php) Remote Include Exploit23-08-2006
VistaBB <= 2.x (functions_mod_user.php) Remote Include Exploit23-08-2006
Empire CMS <= 3.7 (checklevel.php) Remote File Include Vulnerability22-08-2006
HPE <= 1.0 (HPEinc) Remote File Include Vulnerabilities (updated)22-08-2006
Solaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit22-08-2006