BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Icona SpA C6 Messenger DownloaderActiveX Control Arbitrary File Download and Execute - [CVE: 2008-2551] 02-02-2012
Sunway Forcecontrol SNMP NetDBServer.exe Opcode 0x57 02-02-2012
NetSarang Xlpd Printer Daemon 4 Denial of Service Vulnerability 02-02-2012
OfficeSIP Server 3.1 Denial Of Service Vulnerability 02-02-2012
Apache Struts Multiple Persistent Cross-Site Scripting Vulnerabilities 02-02-2012
Sphinix Mobile Web Server 3.1.2.47 Multiple Persistent XSS Vulnerabilities 02-02-2012
OSCommerce v3.0.2 - Persistent Cross Site Vulnerability 02-02-2012
Achievo v1.4.3 - Multiple Web Vulnerabilities 02-02-2012
SiT! Support Incident Tracker 3.64 Multiple Vulnerabilities 01-02-2012
swDesk Multiple Vulnerabilities 01-02-2012
MailEnable Webmail Cross-Site Scripting Vulnerability - [CVE: 2012-0389] 01-02-2012
Webkit normalize bug for android 2.2 (CVE-2010-1759) - [CVE: 2010-1759] 01-02-2012
Ez Album Blind SQL Injection Vulnerability 31-01-2012
Adobe Flash Player MP4 SequenceParameterSetNALUnit Remote Code Execution Exploit - [CVE: 2011-2140] 31-01-2012
sudo 1.8.0 - 1.8.3p1 Format String Vulnerability 31-01-2012
phpShowtime Directory Traversal 31-01-2012
Snort Report <= 1.3.2 SQL Injection Vulnerability 31-01-2012
Apache httpOnly Cookie Disclosure - [CVE: 2012-0053] 31-01-2012
Vastal I-Tech Agent Zone (search.php) Blind SQL Injection Vulnerability 31-01-2012
EdrawSoft Office Viewer Component ActiveX 5.6 (officeviewermme.ocx) BoF PoC 31-01-2012
PragmaMX 1.2.10 Persistent XSS Vulnerability 31-01-2012
HostBill App Remote Code Injection Vulnerability 30-01-2012
Ajax Upload Arbitrary File Upload 30-01-2012
phux Download Manager Blind SQL Injection Vulnerability 30-01-2012
4images 1.7.6 => 9 Csrf inject php code 30-01-2012
Campaign Enterprise 11.0.421 SQLi Vulnerability 30-01-2012
Tracker Software pdfSaver ActiveX 3.60 (pdfxctrl.dll) Stack Buffer Overflow (SEH) 29-01-2012
MS12-004 midiOutPlayNextPolyEvent Heap Overflow - [CVE: 2012-0003] 28-01-2012
vBSEO <= 3.6.0 "proc_deutf()" Remote PHP Code Injection Exploit 27-01-2012
HP Diagnostics Server magentservice.exe Overflow - [CVE: 2011-4789] 27-01-2012