BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Watchfire AppScan QA 5.0.x Remote Code Execution Exploit PoC15-12-2005
Macromedia Flash Media Server 2 Remote Denial of Service Exploit14-12-2005
MS Internet Explorer 6.0 (pre tag multiple single tags) Denial of Service14-12-2005
Limbo <= 1.0.4.2 _SERVER[REMOTE_ADDR] Overwrite Remote Exploit14-12-2005
Mozilla Firefox <= 1.04 compareTo() Remote Code Execution Exploit12-12-2005
phpCOIN 1.2.2 (phpcoinsessid) SQL Inj - Remote Code Execution Exploit12-12-2005
Counter Strike 2D <= 0.1.0.1 Denial of Service Vulnerability11-12-2005
Flatnuke 2.5.6 Privilege Escalation - Remote Commands Execution Exploit10-12-2005
Lyris ListManager Read Message Attachment SQL Injection Exploit09-12-2005
Website Baker <= 2.6.0 Login Bypass - Remote Code Execution Exploit08-12-2005
SugarSuite Open Source <= 4.0beta Remote Code Execution Exploit (c)08-12-2005
Oracle 9.2.0.1 Universal XDB HTTP Pass Overflow Exploit08-12-2005
Oracle 9.2.0.1 Universal XDB HTTP Pass Overflow Exploit08-12-2005
SugarSuite Open Source <= 4.0beta Remote Code Execution Exploit07-12-2005
Appfluent Database IDS < 2.1.0.103 (Env Variable) Local Exploit07-12-2005
SimpleBBS <= 1.1 Remote Commands Execution Exploit (c code)07-12-2005
Mozilla Firefox <= 1.5 (history.dat) Looping Vulnerability PoC07-12-2005
SimpleBBS <= 1.1 Remote Commands Execution Exploit06-12-2005
DoceboLMS <= 2.0.4 connector.php Shell Upload Exploit04-12-2005
WIDCOMM Bluetooth Software < 3.0 Remote Buffer Overflow Exploit04-12-2005
sobexsrv 1.0.0_pre3 Bluetooth syslog() Remote Format String Exploit03-12-2005
WinEggDropShell 1.7 Multiple PreAuth Remote Stack Overflow PoC02-12-2005
Zen Cart <= 1.2.6d (password_forgotten.php) SQL Injection Exploit02-12-2005
Microsoft Windows DTC Remote Exploit (PoC) (MS05-051) (updated)01-12-2005
MS Windows Metafile (mtNoObjects) Denial of Service Exploit (MS05-053)30-11-2005
QNX RTOS 6.3.0 (phgrafx) Local Buffer Overflow Exploit (x86)30-11-2005
MS Windows Metafile (gdi32.dll) Denial of Service Exploit (MS05-053)29-11-2005
Xaraya <= 1.0.0 RC4 create() Denial of Service Exploit29-11-2005
Guppy <= 4.5.9 (REMOTE_ADDR) Remote Commands Execution Exploit28-11-2005
MS Windows MSDTC Service Remote Memory Modification PoC (MS05-051)27-11-2005