BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
eFiction <= 2.0 Fake GIF Shell Upload Exploit25-11-2005
FreeFTPD <= 1.0.10 (PORT Command) Denial of Service Exploit24-11-2005
Cisco PIX Spoofed TCP SYN Packets Remote Denial of Service Exploit23-11-2005
Mambo <= 4.5.2 Globals Overwrite - Remote Command Exection Exploit22-11-2005
FileZilla Server Terminal 0.9.4d Buffer Overflow PoC21-11-2005
MailEnable 1.54 Pro Universal IMAPD W3C Logging BoF Exploit20-11-2005
Google Search Appliance proxystylesheet XSLT Java Code Execution20-11-2005
MailEnable 1.54 Pro Universal IMAPD W3C Logging BoF Exploit20-11-2005
Google Search Appliance proxystylesheet XSLT Java Code Execution20-11-2005
Macromedia Flash Plugin <= 7.0.19.0 (Action) Denial of Service Exploit18-11-2005
EkinBoard 1.0.3 (config.php) SQL Injection - Command Execution Exploit17-11-2005
FreeFTPD <= 1.0.8 (USER) Remote Buffer Overflow Exploit17-11-2005
FreeFTPD <= 1.0.8 (USER) Remote Buffer Overflow Exploit17-11-2005
PHPWebThings <= 1.4 (msg-forum) SQL Injection Exploit16-11-2005
PHPWebThings <= 1.4 (forum) SQL Injection Exploit16-11-2005
PHP-Nuke <= 7.8 Search Module Remote SQL Injection Exploit16-11-2005
FTGate4 Groupware Mail Server 4.1 (imapd) Remote Buffer Overflow PoC16-11-2005
MS Windows 2k UPNP (getdevicelist) Memory Leak DoS Exploit16-11-2005
Unclassified NewsBoard 1.5.3 Patch 3 Blind SQL Injection Exploit14-11-2005
Arki-DB 1.0 (catid) Remote SQL Injection Vulnerabilities14-11-2005
Cyphor 0.19 (show.php id) Remote SQL Injection Exploit14-11-2005
Wizz Forum 1.20 (TopicID) Remote SQL Injection Exploit14-11-2005
Coppermine Photo Gallery <= 1.3.2 File Retrieval SQL Injection Exploit13-11-2005
XOOPS (wfdownloads) 2.05 Module Multiple Vulnerabilities Exploit12-11-2005
Veritas Storage Foundation 4.0 VCSI18N_LANG Local Overflow Exploit12-11-2005
Snort <= 2.4.2 Back Orifice Pre-Preprocessor Remote Exploit (3)11-11-2005
Snort <= 2.4.2 Back Orifice Pre-Preprocessor Remote Exploit (4)11-11-2005
Moodle <= 1.6dev SQL Injection - Command Execution Exploit10-11-2005
Operator Shell (osh) 1.7-14 Local Root Exploit09-11-2005
Sudo <= 1.6.8p9 (SHELLOPTS-PS4 ENV variables) Local Root Exploit09-11-2005