BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Socketmail <= 2.2.6 (site_path) Remote File Include Vulnerability25-05-2006
V-Webmail <= 1.6.4 (pear_dir) Remote File Include Vulnerability25-05-2006
DoceboLMS <= 2.0.5 (help.php) Remote File Include Vulnerability25-05-2006
APC ActionApps CMS 2.8.1 Remote File Include Vulnerabilities25-05-2006
Drupal <= 4.7 (attachment mod_mime) Remote Exploit24-05-2006
Novell eDirectory 8.8 Long URI iMonitor Buffer Overflow Exploit (meta)24-05-2006
Nucleus CMS <= 3.22 (DIR_LIBS) Arbitrary Remote Inclusion Exploit23-05-2006
Docebo <= 3.0.3 Multiple Remote File Include Vulnerabilities23-05-2006
phpCommunityCalendar <= 4.0.3 Multiple (XSS-SQL) Vulnerabilities23-05-2006
PunkBuster < 1.229 (WebTool Service) Remote Buffer Overflow DoS23-05-2006
netPanzer 0.8 rev 952 (frameNum) Server Terminiation Exploit23-05-2006
UBB Threads 6.4.x-6.5.2 (thispath) Remote File Inclusion Vulnerability22-05-2006
portmap 5 beta (Set-Dump) Local Denial of Service Exploit22-05-2006
XOOPS <= 2.0.13.2 xoopsOption[nocommon] Remote Exploit21-05-2006
Fusion News v.1.0 (fil_config) Remote File Inclusion Exploit21-05-2006
Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit21-05-2006
Cyrus IMAPD 2.3.2 (pop3d) Remote Buffer Overflow Exploit21-05-2006
CaLogic Calendars 1.2.2 (CLPath) Remote File Include Vulnerabilities20-05-2006
Woltlab Burning Board <= 2.3.5 (links.php) SQL Injection Exploit20-05-2006
phpBazar <= 2.1.0 Remote (Include-Auth Bypass) Vulnerabilities19-05-2006
phpListPro <= 2.0.1 (Language) Remote Code Execution Exploit19-05-2006
IntelliTamper 2.07 (*.map file) Local Arbitrary Code Execution Exploit19-05-2006
Zix Forum <= 1.12 (layid) SQL Injection Vulnerability19-05-2006
phpMyDirectory <= 10.4.4 (ROOT_PATH) Remote Inclusion Vulnerability19-05-2006
Mozilla Firefox <= 1.5.0.3 (Loop) Denial of Service Exploit18-05-2006
Quezza BB <= 1.0 (quezza_root_path) File Inclusion Vulnerability17-05-2006
RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Vulnerability Scanners17-05-2006
ScozNews <= 1.2.1 (mainpath) Remote File Inclusion Vulnerability17-05-2006
libextractor <= 0.5.13 Multiple Heap Overflow PoC Exploits17-05-2006
RealVNC 4.1.0 - 4.1.1 (VNC Null Authentication) Auth Bypass Patch-EXE16-05-2006