BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Windows Mobile 6.1 and 6.5 Double Free Denial of Service 21-10-2010
Adobe Shockwave player rcsL chunk memory corruption 0day 21-10-2010
Sawmill Enterprise < v8.1.7.3 Multiple Vulnerabilities 21-10-2010
sNews CMS Multiple XSS Vulnerabilities 21-10-2010
MS10-070 ASP.NET Auto-Decryptor File Download Exploit 20-10-2010
Oracle JRE - java.net.URLConnection class &ndash; Same-of-Origin (SOP) Policy Bypass - [CVE: 2010-3573] 20-10-2010
Oracle Siebel eBusiness Application &ndash; Multiple Cross Site Scripting Vulnerabilities - [CVE: 2010-2406] 20-10-2010
Oracle Sun Java System Web Server - HTTP Response Splitting - [CVE: 2010-3514] 20-10-2010
LibSMI smiGetNode Buffer Overflow When Long OID Is Given In Numerical Form - [CVE: 2010-2891] 20-10-2010
Disk Pulse Server 2.2.34 - GetServerInfo Buffer Overflow (Metasploit)19-10-2010
phpCheckZ 1.1.0 Blind SQL Injection Vulnerability 19-10-2010
Hanso Converter 1.1.0 Denial of Service Vulnerability 19-10-2010
ALPHA Player 2.4 Denial of Service Vulnerability 19-10-2010
Linux RDS Protocol Local Privilege Escalation - [CVE: 2010-3904] 19-10-2010
Event Ticket Portal Script Admin Password Change CSRF Vulnerability 19-10-2010
Travel Portal Script Admin Password Change CSRF Vulnerability 19-10-2010
GeekLog 1.7.0 (fckeditor) Arbitrary File Upload Vulnerability 18-10-2010
411cc Multiple SQL Injection Vulnerabilities 18-10-2010
GNU C library dynamic linker $ORIGIN expansion Vulnerability - [CVE: CVE-2010-3847] 18-10-2010
FatPlayer 0.6b Malicious WAV Buffer Overflow Vulnerability (SEH) 18-10-2010
CubeCart 2.0.1 SQL Injection Vulnerability 18-10-2010
Tastydir <= 1.2 (1216) Multiple Vulnerabilities 17-10-2010
WikiWebHelp <= 0.3.3 Insecure Cookie Handling Vulnerability 17-10-2010
Novel eDirectory DHost Console 8.8 SP3 Local SEH Overwrite 17-10-2010
MS10-070 ASP.NET Padding Oracle File Download - [CVE: 2010-3332] 17-10-2010
Kisisel Radyo Script - Multiple Vulnerabilities 17-10-2010
Opera v10.63 SVG animation Element Denial of Service 17-10-2010
Windows NTLM Weak Nonce Vulnerability - [CVE: 2010-0231] 17-10-2010
IBM solidDB <= 6.5.0.3 Denial of Service Vulnerability 16-10-2010
DATAC RealWin <= 2.0 (Build 6.1.8.10) Buffer Overflow Vulnerabilities 16-10-2010