BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Elastix < 2.5 , PHP Code Injection Exploit 06-09-2015
FireEye Appliance Unauthorized File Disclosure 06-09-2015
Disconnect.me Mac OS X Client <= 2.0 - Local Privilege Escalation 06-09-2015
ActiveState Perl.exe x64 Client 5.20.2 - Crash PoC 06-09-2015
WordPress Contact Form Generator <= 2.0.1 - Multiple CSRF Vulnerabilities 06-09-2015
AutoCAD DWG and DXF To PDF Converter 2.2 - Buffer Overflow 06-09-2015
Cerb 7.0.3 - CSRF Vulnerability 02-09-2015
SphereFTP Server 2.0 - Crash PoC 02-09-2015
GPON Home Router FTP G-93RG1 - CSRF Command Execution Vulnerability 02-09-2015
OS X x64 /bin/sh Shellcode, NULL Byte Free, 34 bytes 02-09-2015
Thomson Wireless VoIP Cable Modem TWG850-4B ST9C.05.08 - Authentication Bypass 02-09-2015
Mainframe/System Z Bind Shell 02-09-2015
Mpxplay Multimedia Commander 2.00a - .m3u Stack-Based Buffer Overflow 01-09-2015
Bedita 3.5.1 - XSS Vulnerabilities 01-09-2015
Edimax BR6228nS/BR6228nC - Multiple Vulnerabilities 01-09-2015
XGI Windows VGA Display Manager 6.14.10.1090 - Arbitrary Write PoC 01-09-2015
SiS Windows VGA Display Manager 6.14.10.3930 - Write-What-Where PoC 01-09-2015
Apple OS X Entitlements Rootpipe Privilege Escalation 31-08-2015
Cyberoam Firewall CR500iNG-XP - 10.6.2 MR-1 - Blind SQL Injection Vulnerability 31-08-2015
Viber 4.2.0 - Non-Printable Characters Handling Denial of Service Vulnerability 31-08-2015
Microsoft Office 2007 - msxml5.dll Crash PoC 31-08-2015
Ganglia Web Frontend < 3.5.1 - PHP Code Execution 31-08-2015
Edimax PS-1206MF - Web Admin Auth Bypass 31-08-2015
PhpWiki 1.5.4 - Multiple Vulnerabilities 31-08-2015
Samsung SyncThruWeb 2.01.00.26 - SMB Hash Disclosure 29-08-2015
MS SQL Server 2000/2005 SQLNS.SQLNamespace COM Object Refresh() Unhandled Pointer Exploit 29-08-2015
Sysax Multi Server 6.40 SSH Component Denial of Service 29-08-2015
freeSSHd 1.3.1 - Denial of Service Vulnerability 28-08-2015
Wolf CMS Arbitrary File Upload To Command Execution 28-08-2015
Jenkins 1.626 - Cross Site Request Forgery / Code Execution 28-08-2015