BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
SIMOGEO FileManager 2.3.0 - Multiple Vulnerabilities 08-12-2015
WinAsm Studio 5.1.8.8 - Buffer Overflow Crash PoC 08-12-2015
OpenMRS 2.3 (1.11.4) - Expression Language Injection Vulnerability 08-12-2015
OpenMRS 2.3 (1.11.4) - Multiple Cross-Site Scripting Vulnerabilities 08-12-2015
Cyclope Employee Surveillance <= v8.6.1- Insecure File Permissions 06-12-2015
Wordpress Plugin Advanced uploader v2.10 - Multiple Vulnerabilities 04-12-2015
Wordpress Plugin Sell Download v1.0.16 - Local File Disclosure 04-12-2015
Wordpress Plugin TheCartPress v1.4.7 - Multiple Vulnerabilities 04-12-2015
Gnome Nautilus 3.16 - Denial of Service 03-12-2015
WordPress Gwolle Guestbook Plugin 1.5.3 - Remote File Inclusion 03-12-2015
WordPress Users Ultra Plugin 1.5.50 - Blind SQL injection 03-12-2015
WordPress Users Ultra Plugin 1.5.50 - Persistent XSS 03-12-2015
Oracle BeeHive 2 voice-servlet processEvaluation() Vulnerability 03-12-2015
Malwarebytes Antivirus 2.2.0 - DoS PoC 03-12-2015
Oracle BeeHive 2 voice-servlet prepareAudioToPlay() Arbitrary File Upload 03-12-2015
Acunetix WVS 10 - Local Privilege escalation 02-12-2015
Advantech Switch Bash Environment Variable Code Injection (Shellshock) 02-12-2015
Belkin N150 Wireless Home Router F9K1009 v1 - Multiple Vulnerabilities 01-12-2015
ntop-ng <= 2.0.151021 - Privilege Escalation 01-12-2015
Centos 7.1/Fedora 22 - abrt Local Root 01-12-2015
RHEL 7.0/7.1 - abrt/sosreport Local Root 01-12-2015
Kodi 15 - Arbitrary File Aaccess (Web Interface) 01-12-2015
Zenphoto 1.4.10 - Local File Inclusion 01-12-2015
HumHub 0.11.2 and 0.20.0-beta.2 - SQL Injection 30-11-2015
Easy File Sharing Web Server 7.2 - Remote SEH Buffer Overflow (DEP Bypass with ROP) 30-11-2015
Linux x86_64 Polymorphic execve Shellcode - 31 bytes 25-11-2015
SAP Sybase Adaptive Server Enterprise XML External Entity Information Disclosure Vulnerability 25-11-2015
WP-Client 3.8.7 - Stored XSS Vulnerability 24-11-2015
Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption Vulnerability 23-11-2015
Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption Vulnerability 2 23-11-2015