BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Wordpress Google Document Embedder 2.5.14 - SQL Injection 25-11-2014
Linux Kernel libfutex Local Root for RHEL/CentOS 7.0.1406 25-11-2014
crea8social 1.3 - Stored XSS Vulnerability 25-11-2014
phpMyRecipes 1.2.2 (dosearch.php, words_exact param) - SQL Injection 25-11-2014
TRENDnet SecurView Wireless Network Camera TV-IP422WN (UltraCamX.ocx) Stack BoF 25-11-2014
Arris VAP2500 Authentication Bypass 25-11-2014
tcpdump 4.6.2 Geonet Decoder Denial of Service 24-11-2014
PHP 5.5.12 Locale::parseLocale Memory Corruption 24-11-2014
Advantech EKI-6340 Command Injection 24-11-2014
Hikvision DVR RTSP Request Remote Code Execution 24-11-2014
TP-Link TL-WR740N - Denial Of Service 24-11-2014
Netgear Wireless Router WNR500 - Parameter Traversal Arbitrary File Access Exploit 22-11-2014
MyBB <= 1.8.2 - unset_globals() Function Bypass and Remote Code Execution Vulnerability 22-11-2014
Privacyware Privatefirewall 7.0 - Unquoted Service Path Privilege Escalation 22-11-2014
Supr Shopsystem 5.1.0 - Persistent UI Vulnerability 22-11-2014
Internet Explorer < 11 - OLE Automation Array Remote Code Execution (#2) 20-11-2014
Paid Memberships Pro 1.7.14.2 Path Traversal 19-11-2014
MINIX 3.3.0 Remote TCP/IP Stack DoS 19-11-2014
Snowfox CMS 1.0 - CSRF Add Admin Exploit 19-11-2014
MantisBT XmlImportExport Plugin PHP Code Injection Vulnerability 18-11-2014
Samsung Galaxy KNOX Android Browser RCE 18-11-2014
Internet Explorer OLE Automation Array Remote Code Execution 18-11-2014
.NET Remoting Services Remote Command Execution 17-11-2014
Safari 8.0 / OS X 10.10 - Crash PoC 17-11-2014
Zoph 0.9.1 - Multiple Vulnerabilities 17-11-2014
WebsiteBaker 2.8.3 - Multiple Vulnerabilities 17-11-2014
ZTE ZXHN H108L - Authentication Bypass 17-11-2014
Proticaret E-Commerce Script 3.0 - SQL Injection 17-11-2014
PHPFox - Stored XSS Vulnerability 17-11-2014
ZTE ZXHN H108L - Authentication Bypass 17-11-2014