BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
TCP Chat (TCPX) 1.0 Denial of Service Exploit06-07-2005
Internet Download Manager <= 4.05 Input URL Stack Overflow Exploit06-07-2005
Solaris SPARC - x86 Local Socket Hijack Exploit06-07-2005
MS Internet Explorer (javaprxy.dll) COM Object Remote Exploit05-07-2005
Drupal <= 4.5.3 & <= 4.6.1 Comments PHP Injection Exploit05-07-2005
Mozilla FireFox <= 1.0.1 Remote GIF Heap Overflow Exploit05-07-2005
XOOPS <= 2.0.11 xmlrpc.php SQL Injection Exploit04-07-2005
xmlrpc.php Library <= 1.3.0 Remote Command Execute Exploit (2)04-07-2005
xmlrpc.php Library <= 1.3.0 Remote Command Execute Exploit (3)04-07-2005
Willing Webcam 2.8 Licence Info Disclosure Local Exploit04-07-2005
Access Remote PC 4.5.1 Local Password Disclosure Exploit04-07-2005
Sudo 1.3.1 - 1.6.8p Pathname Validation Local Root Exploit (openbsd)04-07-2005
phpBB 2.0.15 (highlight) Database Authentication Details Exploit03-07-2005
Nokia Affix < 3.2.0 btftp Remote Client Exploit03-07-2005
XML-RPC Library <= 1.3.0 (xmlrpc.php) Remote Code Injection Exploit01-07-2005
Wordpress <= 1.5.1.2 xmlrpc Interface SQL Injection Exploit30-06-2005
MS Windows Message Queuing BoF Universal Exploit (MS05-017) (v.0.3)29-06-2005
phpBB 2.0.15 (highlight) Remote PHP Code Execution29-06-2005
MS Windows Message Queuing BoF Universal Exploit (MS05-017) (v.0.3)29-06-2005
Solaris 9 - 10 ld.so Local Root Exploit (1)28-06-2005
Solaris 9 - 10 ld.so Local Root Exploit (2)28-06-2005
ASPNuke <= 0.80 (article.asp) SQL Injection Exploit27-06-2005
ASPNuke <= 0.80 (comment_post.asp) SQL Injection Exploit27-06-2005
Stream - Raped Denial of Service Attack (win version)27-06-2005
Inframail Advantage Server Edition 6.0 <= 6.37 (SMTP) BoF Exploit27-06-2005
Inframail Advantage Server Edition 6.0 <= 6.37 (FTP) BoF Exploit27-06-2005
IA eMailServer Corporate Edition Version <= 5.2.2 DoS Exploit26-06-2005
TCP-IP Datalook <= 1.3 Local Denial of Service Exploit25-06-2005
PHP-Fusion <= 6.00.105 Accessible Database Backups Download Exploit25-06-2005
UBB Threads < 6.5.2 Beta (mailthread.php) SQL Injection Exploit25-06-2005