BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
SimplyShare 1.4 iOS - Multiple Vulnerabilities 29-01-2014
Oracle Forms and Reports 11.1 - Remote Exploit 29-01-2014
Mybb MyBbirads Plugin SQL Injection28-01-2014
Mozilla Thunderbird 17.0.6 - Input Validation Filter Bypass 27-01-2014
SkyBlueCanvas CMS 1.1 r248-03 - Remote Command Execution 24-01-2014
Ammyy Admin 3.2 - Authentication Bypass 24-01-2014
Joomla JV Comment Extension 3.0.2 (index.php, id param) - SQL Injection 24-01-2014
HP Data Protector Backup Client Service Directory Traversal 24-01-2014
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities 24-01-2014
Daum Game 1.1.0.5 ActiveX (IconCreate Method) - Stack Buffer Overflow 24-01-2014
MW6 Technologies MaxiCode ActiveX (Data param) - Buffer Overflow 24-01-2014
MW6 Technologies DataMatrix ActiveX (Data param) - Buffer Overflow 24-01-2014
MW6 Technologies Aztec ActiveX (Data param) - Buffer Overflow 24-01-2014
Joomla Komento Extension 1.7.2 - Stored XSS Vulnerabilities 24-01-2014
pChart 2.1.3 - Multiple Vulnerabilities 24-01-2014
XOS Shop 1.0 rc7o (redirect.php, goto param) - SQL Injection Vulnerability 24-01-2014
NCH Software Express Burn Plus 4.68 (.EBP) Project File Buffer Overflow 24-01-2014
XOS Shop_v1.0_rc7o Sql Injection Vulnerability 23-01-2014
Adult Webmaster PHP - Password Disclosure 23-01-2014
Cells Blog 3.3 - XSS Reflected & Blind SQLite Injection 23-01-2014
Easy POS System - SQL Injection (login.php) 23-01-2014
mySeatXT 0.2134 - SQL Injection 23-01-2014
PizzaInn_Project - SQL Injection 23-01-2014
Simple e-document 1.31 - Login bypass 23-01-2014
godontologico 5 - SQL Injection (0day) 23-01-2014
iTechClassifieds 3.03.057 - SQL Injection 23-01-2014
MuPDF 1.3 - Stack-based Buffer Overflow in xps_parse_color() 20-01-2014
AfterLogic Pro and Lite 7.1.1.1 - Stored XSS 20-01-2014
BLUE COM Router 5360/52018 - Password Reset Exploit 20-01-2014
Teracom Modem T2-B-Gawv1.4U10Y-BI - Stored XSS Vulnerability 20-01-2014