BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
bitweaver <= 1.3 (tmpImagePath) Attachment mod_mime Exploit15-06-2006
MS Windows (NtClose DeadLock) Vulnerability PoC (MS06-030)14-06-2006
MS Windows XP-2K (Mrxsmb.sys) Privilege Escalation PoC (MS06-030)14-06-2006
The Bible Portal Project <= 2.12 (destination) File Include Vulnerability14-06-2006
Php Blue Dragon CMS <= 2.9.1 (template.php) File Include Vulnerability14-06-2006
Content-Builder (CMS) <= 0.7.2 Multiple Include Vulnerabilities14-06-2006
aWebNews <= 1.5 (visview.php) Remote File Include Vulnerability13-06-2006
Minerva <= 2.0.8a Build 237 (phpbb_root_path) File Include Vulnerability13-06-2006
MyBulletinBoard (MyBB) < 1.1.3 Remote Code Execution Exploit13-06-2006
blur6ex <= 0.3.462 (ID) Admin Disclosure - Blind SQL Injection Exploit12-06-2006
DCP-Portal 6.1.x (root) Remote File Include Vulnerability12-06-2006
CesarFTP 0.99g (MKD) Remote Buffer Overflow Exploit12-06-2006
WebprojectDB <= 0.1.3 (INCDIR) Remote File Include Vulnerability11-06-2006
free QBoard <= 1.1 (qb_path) Remote File Include Vulnerability11-06-2006
MaxiSepet <= 1.0 (link) SQL Injection Vulnerability11-06-2006
RCblog <= 1.03 (post) Remote Command Execution Exploit11-06-2006
AWF CMS 1.11 (spaw_root) Remote File Include Vulnerability11-06-2006
Content-Builder (CMS) 0.7.5 Multiple Include Vulnerabilities11-06-2006
empris <= r20020923 (phormationdir) Remote Include Vulnerability10-06-2006
aePartner <= 0.8.3 (dir[data]) Remote Include Vulnerability10-06-2006
phpOnDirectory <= 1.0 Remote File Include Vulnerabilities10-06-2006
MailEnable Enterprise <= 2.0 (ASP Version) Multiple Vulnerabilities09-06-2006
0verkill 0.16 (ASCII-ART Game) Remote Integer Overflow Crash Exploit09-06-2006
Back-End CMS <= 0.7.2.1 (jpcache.php) Remote Include Vulnerability08-06-2006
D-Link Access-Point <= 2.10na (DWL Series) Config Disclosure Vuln08-06-2006
cms-bandits 2.5 (spaw_root) Remote File Include Vulnerabilities08-06-2006
Enterprise Payroll Systems <= 1.1 (footer) Remote Include Vulnerability08-06-2006
Guestex Guestbook 1.00 (email) Remote Code Execution Exploit08-06-2006
QBik Wingate 6.1.1.1077 (POST) Remote Buffer Overflow Exploit07-06-2006
OpenEMR <= 2.8.1 (fileroot) Remote File Include Vulnerability07-06-2006