BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Microsoft IIS 5.0-6.0 FTP Server Remote Stack Overflow Exploit (win2k)31-08-2009
HTML Creator & Sender <= 2.3 build 697 Local BOF Exploit (SEH)28-08-2009
Silurus Classifieds System (category.php) SQL Injection Vulnerability28-08-2009
uTorrent <= 1.8.3 (Build 15772) Create New Torrent Buffer Overflow PoC28-08-2009
Kaspersky 2010 Remote Memory Corruption - DoS PoC28-08-2009
PIPL <= 2.5.0 (.m3u File) Universal Buffer Overflow Exploit (SEH)28-08-2009
Uiga Church Portal (year) Remote SQL Injection Vulnerability27-08-2009
Joomla Component com_digifolio 1.52 (id) SQL Injection Vulnerability27-08-2009
Wordpress Plugin WP-Syntax <= 0.9.1 Remote Command Execution27-08-2009
Open Auto Classifieds <= 1.5.9 Multiple Remote Vulnerabilities26-08-2009
Simple CMS FrameWork <= 1.0 (page) Remote SQL Injection Vuln26-08-2009
TFTPUtil GUI 1.3.0 Remote Denial of Service Exploit26-08-2009
Discuz! Plugin Crazy Star <= 2.0 (fmid) SQL Injection Vulnerability26-08-2009
Moa Gallery 1.2.0 (index.php action) SQL Injection Vulnerability26-08-2009
TotalCalendar 2.4 (bSQL-LFI) Multiple Remote Vulnerabilities26-08-2009
Moa Gallery <= 1.2.0 (p_filename) Remote File Disclosure Vulnerability26-08-2009
Moa Gallery <= 1.2.0 Multiple Remote File Inclusion Vulnerabilities26-08-2009
Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit26-08-2009
PAD Site Scripts 3.6 (list.php string) SQL Injection Vulnerability26-08-2009
allomani 2007 (cat) Remote SQL Injection Vulnerability26-08-2009
phpSANE 0.5.0 (save.php) Remote File Inclusion Vulnerability26-08-2009
Turnkey Arcade Script (id) Remote SQL Injection Vulnerability25-08-2009
TCPDB 3.8 Remote Content Change Bypass Vulnerabilities25-08-2009
Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure25-08-2009
Xerox WorkCentre Multiple Models Denial of Service Exploit25-08-2009
Cerberus FTP 3.0.1 (ALLO) Remote Overflow DoS Exploit (meta)25-08-2009
Novell Client for Windows 2000-XP ActiveX Remote DoS Vulnerability25-08-2009
Lotus note connector for Blackberry Manager 5.0.0.11 ActiveX DoS Vuln25-08-2009
EMO Breader Manager (video.php movie) SQL Injection Vulnerability25-08-2009
ProShow Producer - Gold 4.0.2549 (.psh) Universal BOF Exploit (SEH)25-08-2009