BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
File Manager 4.2.10 iOS - Code Execution Vulnerability 25-10-2014
OpenBSD <= 5.5 - Local Kernel Panic 25-10-2014
Creative Contact Form (Wordpress 0.9.7 and Joomla 2.0.0) - Shell Upload Vulnerability 25-10-2014
Dell EqualLogic Storage - Remote File Inclusion 25-10-2014
Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060) 25-10-2014
Magento Server MAGMI Plugin - Remote File Inclusion (RFI) 25-10-2014
Feng Office 1.7.4 - Cross Site Scripting Vulnerabilities 23-10-2014
Feng Office 1.7.4 - Arbitrary File Upload 23-10-2014
File Manager 4.2.10 iOS - Code Execution Vulnerability 22-10-2014
iFunBox Free 1.1 iOS - File Inclusion Vulnerability 22-10-2014
iBackup 10.0.0.32 - Local Privilege Escalation 22-10-2014
DotNetNuke DNNspot Store 3.0.0 Arbitary File Upload 22-10-2014
Joomla Akeeba Kickstart Unserialize Remote Code Execution 21-10-2014
Numara / BMC Track-It! FileStorageService Arbitrary File Upload 21-10-2014
HP Data Protector EXEC_INTEGUTIL Remote Code Execution 21-10-2014
Windows OLE Package Manager SandWorm Exploit 20-10-2014
Linux PolicyKit Race Condition Privilege Escalation 20-10-2014
MS14-060 Microsoft Windows OLE Package Manager Code Execution 20-10-2014
SAP Netweaver Enqueue Server - Denial of Service 17-10-2014
Drupal Core <= 7.32 - SQL Injection (PHP) 17-10-2014
Drupal Core <= 7.32 - SQL Injection (#2) 17-10-2014
Drupal Core <= 7.32 - SQL Injection (#1) 17-10-2014
Microsoft Bluetooth Personal Area Networking (BthPan.sys) Privilege Escalation 15-10-2014
Indeed Job Search 2.5 iOS API - Multiple Vulnerabilities 15-10-2014
SEO Control Panel 3.6.0 - Authenticated SQL Injection 14-10-2014
Tenda A32 Router - CSRF Vulnerability 14-10-2014
Telefonica O2 Connection Manager 8.7 - Service Trusted Path Privilege Escalation 14-10-2014
Telefonica O2 Connection Manager 3.4 - Local Privilege Escalation Vulnerability 14-10-2014
PayPal Inc BB #85 MB iOS 4.6 - Auth Bypass Vulnerability 14-10-2014
Bosch Security Systems DVR 630/650/670 Series - Multiple Vulnerabilities 14-10-2014