BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Elxis CMS 2009.2 SQL Injection Vulnerabilities 30-11-2010
DynPG 4.2.0 Multiple Vulnerabilities 30-11-2010
HP LaserJet Directory Traversal in PJL Interface 29-11-2010
Mediacoder 0.7.5.4792 Buffer Overflow Exploit (SEH) 29-11-2010
MicroNetSoft RV Dealer Website search.asp, showAlllistings.asp SQL Injection 29-11-2010
Diferior 8.03 XSS Vulnerability 29-11-2010
FoxPlayer v2.4.0 Denial of Service 29-11-2010
OTSTurntables 1.00.048 (m3u/ofl) Local BOF Exploit (SEH) 28-11-2010
Skeletonz CMS Permanent XSS Vulnerability 28-11-2010
CA Internet Security Suite 2010 KmxSbx.sys Kernel Pool Overflow 0 day Exploit 28-11-2010
Hanso Player Version 1.4.0 (.m3u) Denial of Service Vulnerability 28-11-2010
Site2Nite Big Truck Broker "txtSiteId" SQL Injection Vulnerability 28-11-2010
MemHT Portal 4.0.1 [user agent] Persistent Cross Site Scripting 27-11-2010
Linux Kernel Unix Sockets Local Denial of Service - [CVE: 2010-4249] 27-11-2010
Jurpopage 0.2.0 SQL Injection 27-11-2010
Local Root Privilege Escalation Vulnerability in systemtap - [CVE: 2010-4170] 26-11-2010
[D] Bug's MySQL ..:::.. on FaceBook !! --> For discussion and development [Z]26-11-2010
Linux Kernel 'setup_arg_pages()' Denial of Service Vulnerability - [CVE: 2010-3858] 26-11-2010
Linux/ARM - add root user with password - 151 bytes 25-11-2010
Frog CMS 0.9.5 Multiple Vulnerabilities 25-11-2010
Wolf CMS 0.6.0b Multiple Vulnerabilities 25-11-2010
NCH Officeintercom <= v5.20 Remote Denial of Service Vulnerability 25-11-2010
Joomla JE Ajax Event Calendar Component (com_jeajaxeventcalendar) SQL Injection 25-11-2010
SiteEngine <= 7.1 SQL Injection Vulnerability 25-11-2010
JDownloader Webinterface Source Code Disclosure Vulnerability 25-11-2010
OSX/Intel - setuid shell x86_64 - 51 bytes 25-11-2010
Free Simple Software SQL Injection Vulnerability - [CVE: 2010-4298] 24-11-2010
WSN Links SQL Injection Vulnerability - [CVE: 2010-4006] 24-11-2010
[D] Upload Shell ..:::.. Damailinglist v2 -> ApplicationSetting.asp [Z] 24-11-2010
[D] Script JOMMLA ----> Sql injection [Z] 24-11-2010