BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Websockify (C Implementation) 0.8.0 - Buffer Overflow 02-06-2016
Relay Ajax Directory Manager relayb01-071706, 1.5.1, 1.5.3 - Unauthenticated File Upload 02-06-2016
Liferay CE < 6.2 CE GA6 - Stored XSS 02-06-2016
Joomla SecurityCheck Extension 2.8.9 - Multiple Vulnerabilities 02-06-2016
Wireshark - erf_meta_read_tag SIGSEGV 01-06-2016
AjaxExplorer 1.10.3.2 - Multiple Vulnerabilities 01-06-2016
ProcessMaker 3.0.1.7 - Multiple vulnerabilities 31-05-2016
AirOS NanoStation M2 5.6-beta - Multiple Vulnerabilities 31-05-2016
FlatPress 1.0.3 - CSRF Arbitrary File Upload 31-05-2016
TCPDump 4.5.1 - Crash PoC 31-05-2016
Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execution (msf) 31-05-2016
CCextractor 0.80 - Crash PoC 31-05-2016
Linux x86_64 XOR Encode execve Shellcode 30-05-2016
Open Source Real Estate Script 3.6.0 - SQL Injection 30-05-2016
MySQL 5.5.45 - procedure analyse Function Denial of Service 30-05-2016
PHP Realestate Script Script 4.9.0 - SQL Injection 27-05-2016
Graphite2 - NameTable::getName Multiple Heap-Based Out-of-Bounds Reads 26-05-2016
Graphite2 - TtfUtil::CmapSubtable4NextCodepoint Heap-Based Overread 26-05-2016
Graphite2 - TtfUtil::CheckCmapSubtable12 Heap-Based Overread 26-05-2016
Graphite2 - GlyphCache::Loader Heap-Based Overreads 26-05-2016
Graphite2 - GlyphCache::GlyphCache Heap-Based Buffer Overflow 26-05-2016
HP Data Protector A.09.00 - Arbitrary Command Execution 26-05-2016
Micro Focus Rumba+ 9.4 - Multiple Stack Buffer Overflow Vulnerabilities 26-05-2016
EduSec 4.2.5 - SQL Injection 26-05-2016
Real Estate Portal 4.1 - Multiple Vulnerabilities 26-05-2016
PowerFolder Server 10.4.321 - Remote Code Execution 25-05-2016
Ubiquiti airOS Arbitrary File Upload 25-05-2016
Oracle ATS Arbitrary File Upload 25-05-2016
AfterLogic WebMail Pro ASP.NET 6.2.6 - Administrator Account Disclosure via XXE Injection 24-05-2016
Job Script by Scubez - Remote Code Execution 23-05-2016