BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Hippo CMS 10.1 - Multiple Vulnerabilities 01-02-2016
x86_64 Linux shell_reverse_tcp with Password - Polymorphic Version 29-01-2016
ProjectSend r582 - Multiple Vulnerabilities 29-01-2016
SAP HANA 1.00.095 - hdbindexserver Memory Corruption 28-01-2016
OS X - IOSCSIPeripheralDeviceType00 Userclient Type 12 Exploitable Kernel NULL Dereference 28-01-2016
OS X Kernel - Hypervisor Driver Use-After-Free 28-01-2016
OS X - OSMetaClassBase::safeMetaCast in IOAccelContext2::connectClient Exploitable NULL Dereference 28-01-2016
OS X and iOS Unsandboxable Kernel Use-After-Free in Mach Vouchers 28-01-2016
OS X - IntelAccelerator::gstqConfigure Exploitable Kernel NULL Dereference 28-01-2016
iOS and OS X - NECP System Control Socket Packet Parsing Kernel Code Execution Integer Overflow 28-01-2016
OS X - gst_configure Kernel Buffer Overflow 28-01-2016
OSX - io_service_close Use-After-Free 28-01-2016
OS X and iOS Kernel - iokit Registry Iterator Manipulation Double Free 28-01-2016
OS X - IOHDIXControllerUserClient::convertClientBuffer Integer Overflow 28-01-2016
Android sensord Local Root Exploit 27-01-2016
WordPress Booking Calendar Contact Form <=1.1.24 - Multiple Vulnerabilities 27-01-2016
WordPress Booking Calendar Contact Form<=1.1.24 - addslashes SQL Injection Vulnerability 27-01-2016
BK Mobile jQuery CMS 2.4 - Multiple Vulnerabilities 27-01-2016
Linux x86/x86_64 Read etc/passwd Shellcode 27-01-2016
Secure Item Hub 1.0 iOS - Multiple Vulnerabilities 27-01-2016
Linux x86/x86_64 tcp_bind Shellcode 27-01-2016
Linux x86/x86_64 tcp_bind Shellcode #2 27-01-2016
Gongwalker API Manager 1.1 - Blind SQL Injection 26-01-2016
Wireshark - dissect_nhdr_extopt Stack-Based Buffer Overflow 26-01-2016
Wireshark - hiqnet_display_data Static Out-of-Bounds Read 26-01-2016
pdfium - opj_jp2_apply_pclr (libopenjpeg) Heap-Based Out-of-Bounds Read 26-01-2016
Wireshark - nettrace_3gpp_32_423_file_open Stack-Based Out-of-Bounds Read 26-01-2016
pdfium - opj_j2k_read_mcc (libopenjpeg) Heap-Based Out-of-Bounds Read 26-01-2016
Wireshark dissect_ber_constrained_bitstring Heap-Based Out-of-Bounds Read 26-01-2016
Wireshark - iseries_check_file_type Stack-Based Out-of-Bounds Read 26-01-2016