BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Xdh / LinuxNet Perlbot / fBot IRC Bot Remote Code Execution 14-12-2015
Siemens Simatic S7 1200 CPU Command Module (MSF) 14-12-2015
WordPress Admin Management Xtended Plugin 2.4.0 - Privilege escalation 14-12-2015
ECommerceMajor - (productdtl.php, prodid param) SQL Injection Vulnerability 14-12-2015
Windows XP-10 - Null-Free WinExec Shellcode (Python) 14-12-2015
Avast Integer Overflow Verifying numFonts in TTC Header 10-12-2015
Avast OOB Write Decrypting PEncrypt Packed Executables 10-12-2015
Rar CmdExtract::UnstoreFile Integer Truncation Memory Corruption 10-12-2015
Avast JetDb::IsExploited4x - Performs Unbounded Search on Input 10-12-2015
Avast Heap Overflow Unpacking MoleBox Archives 10-12-2015
Gökhan Balbal Script 2.0 - CSRF Vulnerability 10-12-2015
Skybox Platform <=7.0.611 - Multiple Vulnerabilities 10-12-2015
iy10 Dizin Scripti - Multiple Vulnerabilities 10-12-2015
Microsoft Office / COM Object els.dll DLL Planting (MS15-134) 09-12-2015
Wordpress Plugin WP Easy Poll 1.1.3 - XSS and CSRF 09-12-2015
IE 11.0.9600.18097 COmWindowProxy::SwitchMarkup NULL PTR 09-12-2015
MacOS X 10.11 FTS Deep Structure of the File System Buffer Overflow 09-12-2015
WIMAX LX350P(WIXFMR-108) - Multiple Vulnerabilities 09-12-2015
WIMAX MT711x - Multiple Vulnerabilities 09-12-2015
Microsoft Windows Media Center Link File Incorrectly Resolved Reference 09-12-2015
Microsoft Windows Media Center Library Parsing RCE Vulnerability aka "self-executing" MCL File 09-12-2015
iniNet SpiderControl SCADA Web Server Service 2.02 - Insecure File Permissions 08-12-2015
PHP Utility Belt - Remote Code Execution 08-12-2015
WordPress Polls Widget Plugin 1.0.7 - SQL Injection Vulnerability 08-12-2015
dotCMS 3.2.4 - Multiple Vulnerabilities 08-12-2015
iniNet SpiderControl PLC Editor Simatic 6.30.04 - Insecure File Permissions 08-12-2015
Atlassian HipChat for Jira Plugin Velocity Template Injection 08-12-2015
WinAsm Studio 5.1.8.8 - Buffer Overflow Crash PoC 08-12-2015
OpenMRS 2.3 (1.11.4) - Multiple Cross-Site Scripting Vulnerabilities 08-12-2015
OpenMRS 2.3 (1.11.4) - Local File Disclosure Vulnerability 08-12-2015