BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Sophos Web Protection Appliance clear_keys.pl Local Privilege Escalation [Anonymoused] 17-09-2013
OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities [Anonymoused] 17-09-2013
PCMAN FTP 2.07 STOR Command - Stack Overflow Exploit (MSF) [Anonymoused] 17-09-2013
Oracle Java ShortComponentRaster.verify() Memory Corruption [Anonymoused] 17-09-2013
Western Digital Arkeia Appliance 10.0.10 - Multiple Vulnerabilities [Anonymoused] 17-09-2013
Mitsubishi MC-WorkX 8.02 ActiveX Control (IcoLaunch) File Execution [Anonymoused] 15-09-2013
Router ONO Hitron CDE-30364 - CSRF Vulnerability [Anonymoused] 15-09-2013
Earthlogic Cms Multiple Vulnerability14-09-2013
ShopDirector v1.x XSS Vulnerability13-09-2013
Zimplit CMS 3.0 - Multiple Vulnerabilities [Anonymoused] 13-09-2013
Vestel TV 42pf9322 - Denial of Service [Anonymoused] 13-09-2013
YSD Shoping CMS XSS Vulnerability13-09-2013
Synology DiskStation Manager (DSM) 4.3-3776 - Multiple Vulnerabilities [Anonymoused] 12-09-2013
D-Link DSL-2740B - Multiple CSRF Vulnerabilities [Anonymoused] 12-09-2013
Microsoft SharePoint 2013 (Cloud) - Persistent Exception Handling Vulnerability MS13-067 [Anonymoused] 12-09-2013
Talkie Bluetooth Video iFiles 2.0 iOS - Multiple Vulnerabilities [Anonymoused] 12-09-2013
AjaXplorer 1.0 - Multiple Vulnerabilities [Anonymoused] 10-09-2013
HP SiteScope Remote Code Execution [Anonymoused] 10-09-2013
MS13-055 Microsoft Internet Explorer CAnchorElement Use-After-Free [Anonymoused] 10-09-2013
eM Client e-mail client v5.0.18025.0 Stored XSS vulnerability [Anonymoused] 10-09-2013
glFusion 1.3.0 (search.php, cat_id param) - SQL Injection [Anonymoused] 10-09-2013
D-Link DIR-505 1.06 - Multiple Vulnerabilities [Anonymoused] 10-09-2013
Sophos Web Protection Appliance - Multiple Vulnerabilities [Anonymoused] 09-09-2013
Moodle 2.3.9, 2.4.6 - Multiple Vulnerabilities [Anonymoused] 09-09-2013
freeFTPd 1.0.10 PASS Command SEH Overflow (msf) [Anonymoused] 09-09-2013
Datalogicco CMS SQL Injection07-09-2013
Wordpress Download Backup Vulnerability06-09-2013
Wordpress All Video Gallery 1.2 SQL Injection 06-09-2013
IKE and AuthIP IPsec Keyring Modules Service (IKEEXT) Missing DLL [Anonymoused] 06-09-2013
Woltlab Burning Board FLVideo Addon (video.php, value param) - SQL Injection [Anonymoused] 06-09-2013