BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
MS Windows 2k Kernel APC Data-Free Local Escalation Exploit (MS05-055)05-01-2006
WinRAR 3.30 Long Filename Buffer Overflow Exploit04-01-2006
WinRAR 3.30 Long Filename Buffer Overflow Exploit (more targets) (2)04-01-2006
FlatCMS <= 1.01 (file_editor.php) Remote Command Execution Exploit04-01-2006
Valdersoft Shopping Cart <= 3.0 Remote Command Execution Exploit03-01-2006
SCO Openserver 5.0.7 (termsh) Local Privilege Escalation Exploit03-01-2006
CuteNews <= 1.4.1 (categories.mdu) Remote Command Execution Exploit01-01-2006
Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c)30-12-2005
CubeCart <= 3.0.6 Remote Command Execution Exploit30-12-2005
WebWiz Products (1.0 , <= 3.06) Login Bypass SQL Injection Exploits30-12-2005
MS Internet Explorer 6.0 (mshtml.dll div) Denial of Service Exploit29-12-2005
phpDocumentor <= 1.3.0 rc4 Remote Commands Execution Exploit29-12-2005
MS Windows IIS Malformed HTTP Request Denial of Service Exploit (cpp)29-12-2005
MS Internet Explorer 6.0 (mshtml.dll datasrc) Denial of Service Vuln27-12-2005
BZFlag <= 2.0.4 (undelimited string) Denial of Service Exploit27-12-2005
Windows XP-2003 Metafile Escape() Code Execution Exploit (meta)27-12-2005
Dev Web Management System <= 1.5 (cat) Remote SQL Injection Exploit24-12-2005
phpBB <= 2.0.17 (signature_bbcode_uid) Remote Command Exploit24-12-2005
PHP-Fusion 6.00.3 (rating) Parameter Remote SQL Injection Exploit23-12-2005
phpBB <= 2.0.18 Remote XSS Cookie Disclosure Exploit21-12-2005
PHPGedView <= 3.3.7 Arbitrary Remote Code Execution Exploit20-12-2005
Eudora Qualcomm WorldMail 3.0 (IMAPd) Remote Overflow Exploit20-12-2005
Golden FTP Server <= 1.92 (APPE) Remote Overflow Exploit (meta)20-12-2005
Eudora Qualcomm WorldMail 3.0 (IMAPd) Remote Overflow Exploit20-12-2005
Golden FTP Server <= 1.92 (APPE) Remote Overflow Exploit (meta)20-12-2005
MS Windows IIS Malformed HTTP Request Denial of Service Exploit (c)19-12-2005
MS Windows IIS Malformed HTTP Request Denial of Service Exploit (pl)19-12-2005
MailEnable Enterprise Edition 1.1 (EXAMINE) Buffer Overflow Exploit19-12-2005
Mercury Mail Transport System 4.01b Remote Exploit (PH SERVER)16-12-2005
Mercury Mail Transport System 4.01b Remote Exploit (PH SERVER)16-12-2005