BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Ktools Photostore 4.7.5 - Multiple Vulnerabilities 04-07-2016
Linux 64bit NetCat Bind Shell Shellcode - 64 bytes 04-07-2016
Ubuntu 16.04 local root exploit - netfilter target_offset OOB 03-07-2016
Python smtplib 2.7.11 / 3.4.4 / 3.5.1 - Man In The Middle StartTLS Stripping03-07-2016
Phoenix Exploit Kit - Remote Code Execution 01-07-2016
Ktools Photostore 4.7.5 - Blind SQL Injection 30-06-2016
Cuckoo Sandbox Guest 2.0.1 - XMLRPC Privileged Remote Code Execution 29-06-2016
Concrete5 5.7.3.1 - (Application::dispatch) Local File Inclusion 29-06-2016
Ubiquiti Administration Portal - CSRF to Remote Command Execution 29-06-2016
WordPress Ultimate Membership Pro Plugin 3.3 - SQL Injection 29-06-2016
Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities 29-06-2016
Lenovo ThinkPad - System Management Mode Arbitrary Code Execution Exploit 29-06-2016
Symantec Antivirus - Missing Bounds Checks in dec2zip ALPkOldFormatDecompressor::UnShrink 29-06-2016
Symantec Antivirus - PowerPoint Misaligned Stream-cache Remote Stack Buffer Overflow 29-06-2016
Windows 7 SP1 x86 - Privilege Escalation (MS16-014) 29-06-2016
Relay Ajax Directory Manager relayb01-071706, 1.5.1, 1.5.3 - Unauthenticated File Upload 02-06-2016
Websockify (C Implementation) 0.8.0 - Buffer Overflow 02-06-2016
Liferay CE < 6.2 CE GA6 - Stored XSS 02-06-2016
Joomla SecurityCheck Extension 2.8.9 - Multiple Vulnerabilities 02-06-2016
AjaxExplorer 1.10.3.2 - Multiple Vulnerabilities 01-06-2016
Wireshark - erf_meta_read_tag SIGSEGV 01-06-2016
AirOS NanoStation M2 5.6-beta - Multiple Vulnerabilities 31-05-2016
ProcessMaker 3.0.1.7 - Multiple vulnerabilities 31-05-2016
FlatPress 1.0.3 - CSRF Arbitrary File Upload 31-05-2016
Data Protector A.09.00 - Encrypted Communications Arbitrary Command Execution (msf) 31-05-2016
TCPDump 4.5.1 - Crash PoC 31-05-2016
CCextractor 0.80 - Crash PoC 31-05-2016
Open Source Real Estate Script 3.6.0 - SQL Injection 30-05-2016
Linux x86_64 XOR Encode execve Shellcode 30-05-2016
MySQL 5.5.45 - procedure analyse Function Denial of Service 30-05-2016