BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Baidu Spark Browser v26.5.9999.3511 - Remote Stack Overflow Vulnerability (DoS) 02-07-2014
Kerio Control 8.3.1 - Blind SQL Injection 02-07-2014
Zurmo CRM - Persistent XSS Vulnerability 02-07-2014
Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 4.1.X Bypass 01-07-2014
Flussonic Media Server 4.1.25 - 4.3.3 - Aribtrary File Disclosure 01-07-2014
IBM Algorithmics RICOS 4.5.0 - 4.7.0 - Multiple Vulnerabilities 01-07-2014
Gitlist <= 0.4.0 - Remote Code Execution 30-06-2014
Thomson TWG87OUIR - POST Password CSRF 25-06-2014
Cogent DataHub Command Injection 25-06-2014
AlienVault OSSIM av-centerd Command Injection 24-06-2014
D-Link hedwig.cgi Buffer Overflow in Cookie Header 24-06-2014
D-Link authentication.cgi Buffer Overflow 24-06-2014
ZeroCMS 1.0 - (zero_transact_article.php article_id POST parameter) SQL Injection Vulnerability 24-06-2014
Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability 24-06-2014
Linux Kernel <= 3.13 - Local Privilege Escalation PoC (gid) 21-06-2014
D-link DSL-2760U-E1 - Persistent XSS 21-06-2014
web2Project 3.1 - Multiple Vulnerabilities 19-06-2014
Ericom AccessNow Server Buffer Overflow 19-06-2014
docker 0.11 VMM-container Breakout 18-06-2014
Rocket Servergraph Admin Center fileRequestor Remote Code Execution 18-06-2014
Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow Vulnerability 18-06-2014
ZTE WXV10 W300 - Multiple Vulnerabilities 18-06-2014
Motorola SBG901 Wireless Modem - CSRF Vulnerability 18-06-2014
Cacti Superlinks Plugin 1.4-2 - SQL Injection 18-06-2014
Adobe Reader for Android addJavascriptInterface Exploit 17-06-2014
Easy File Management Web Server Stack Buffer Overflow 17-06-2014
Java Debug Wire Protocol Remote Code Execution 17-06-2014
ZeroCMS 1.0 - zero_transact_user.php, Handling Privilege Escalation 13-06-2014
Yealink VoIP Phone SIP-T38G - Privileges Escalation 13-06-2014
Yealink VoIP Phone SIP-T38G - Remote Command Execution 13-06-2014