BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
pppBlog <= 0.3.8 (randompic.php) System Disclosure Exploit31-05-2006
Ottoman CMS <= 1.1.3 (default_path) Remote File Include Vulnerabilities31-05-2006
metajour 2.1 (system_path) Remote File Include Vulnerabilities31-05-2006
MS Internet Explorer (inetconn.dll) Stack Overflow Crash31-05-2006
gnopaste <= 0.5.3 (common.php) Remote File Include Vulnerability30-05-2006
gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC30-05-2006
Fastpublish CMS 1.6.9 config[fsBase] Remote Include Vulnerabilities29-05-2006
Speedy ASP Forum (profileupdate.asp) User Pass Change Exploit29-05-2006
Nukedit CMS <= 4.9.6 Unauthorized Admin Add Exploit29-05-2006
tinyBB <= 0.3 Remote (Include - SQL Injection) Vulnerabilities28-05-2006
Enigma Haber <= 4.3 Multiple Remote SQL Injection Vulnerabilities28-05-2006
F@cile Interactive Web <= 0.8x Remote (Include - XSS) Vulnerabilities28-05-2006
Eggblog < 3.07 Remote (SQL Injection - Privilege Escalation) Exploit28-05-2006
UBB Threads 5.x - 6.x Multiple Remote File Inclusion Vulnerabilities28-05-2006
Activity MOD Plus <= 1.1.0 (phpBB Mod) File Inclusion Vulnerability28-05-2006
ASPSitem <= 2.0 Remote (SQL Injection - DB Disclosure) Vulnerabilities28-05-2006
Blend Portal <= 1.2.0 (phpBB Mod) Remote File Inclusion Vulnerability28-05-2006
CosmicShoppingCart (search.php) Remote SQL Injection Vulnerability28-05-2006
Hot Open Tickets <= 11012004 (CLASS_PATH) Remote Include Vuln27-05-2006
PrideForum 1.0 (forum.asp) Remote SQL Injection Vulnerability27-05-2006
MiniNuke 2.x (create an admin) Remote SQL Injection Exploit27-05-2006
MS Internet Explorer (HTML Tag) Memory Corruption (MS06-013)27-05-2006
tiffsplit (libtiff <= 3.8.2) Local Stack Buffer Overflow PoC26-05-2006
Plume CMS <= 1.0.3 (manager_path) Remote File Include Vulnerability26-05-2006
qjForum (member.asp) SQL Injection Vulnerability26-05-2006
Easy-Content Forums 1.0 Multiple SQL-XSS Vulnerabilities26-05-2006
WordPress <= 2.0.2 (cache) Remote Shell Injection Exploit25-05-2006
BASE <= 1.2.4 melissa (Snort Frontend) Remote Inclusion Vulnerabilities25-05-2006
open-medium.CMS <= 0.25 (404.php) Remote File Include Vulnerability25-05-2006
Back-End CMS <= 0.7.2.2 (BE_config.php) Remote Include Vulnerability25-05-2006