BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
CUPS Filter Bash Environment Variable Code Injection 29-10-2014
MAARCH 1.4 - SQL Injection 29-10-2014
MAARCH 1.4 - Arbitrary File Upload 29-10-2014
IBM Tivoli Monitoring 6.2.2 kbbacf1 - Privilege Escalation 29-10-2014
Konke Smart Plug K - Authentication Bypass Vulnerability 29-10-2014
vBulletin Tapatalk - Blind SQL Injection 28-10-2014
Windows TrackPopupMenu Win32k NULL Pointer Dereference 28-10-2014
Enalean Tuleap 7.4.99.5 - Remote Command Execution 28-10-2014
Enalean Tuleap 7.2 - XXE File Disclosure 28-10-2014
Enalean Tuleap 7.4.99.5 - Blind SQL Injection 28-10-2014
phpfusion Denial of Service Vulnerability28-10-2014
Folder Plus 2.5.1 iOS - Persistent XSS Vulnerability 27-10-2014
WebDisk+ 2.1 iOS - Code Execution Vulnerability 27-10-2014
Binary File Descriptor Library (libbfd) - Out-of-Bounds Crash 27-10-2014
Incredible PBX 2.0.6.5.0 - Remote Command Execution 27-10-2014
Mulesoft ESB Runtime 3.5.1 - Privilege Escalation Vulnerability 27-10-2014
Centreon SQL and Command Injection 27-10-2014
HP Operations Agent Remote XSS iFrame Injection 27-10-2014
CBN CH6640E/CG6640E Wireless Gateway Series Multiple Vulnerabilities 27-10-2014
Free WMA MP3 Converter 1.8 (.wav) - Buffer Overflow 27-10-2014
Wordpress CP Multi View Event Calendar 1.01 - SQL Injection 27-10-2014
File Manager 4.2.10 iOS - Code Execution Vulnerability 25-10-2014
OpenBSD <= 5.5 - Local Kernel Panic 25-10-2014
Creative Contact Form (Wordpress 0.9.7 and Joomla 2.0.0) - Shell Upload Vulnerability 25-10-2014
Dell EqualLogic Storage - Remote File Inclusion 25-10-2014
Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060) 25-10-2014
Magento Server MAGMI Plugin - Remote File Inclusion (RFI) 25-10-2014
Feng Office 1.7.4 - Cross Site Scripting Vulnerabilities 23-10-2014
Feng Office 1.7.4 - Arbitrary File Upload 23-10-2014
File Manager 4.2.10 iOS - Code Execution Vulnerability 22-10-2014