BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
S-CMS <= 2.0b3 Multiple SQL Injection Vulnerabilities09-06-2009
S-CMS <= 2.0b3 (username) Blind SQL Injection Exploit09-06-2009
Free Download Manager 2.5-3.0 (Control Server) Remote BOF Exploit09-06-2009
Joomla Component Akobook 2.3 (gbid) SQL Injection Vulnerability09-06-2009
Joomla Component com_media_library 1.5.3 RFI Vulnerability09-06-2009
Joomla Component BookLibrary 1.5.2.4 Remote File Inclusion Vuln09-06-2009
Joomla Component BookLibrary 1.5.2.4 Remote File Inclusion Vulnerability09-06-2009
Apple Safari <= 3.2.x (XXE attack) Local File Theft Vulnerability09-06-2009
Shop Script Pro 2.12 Remote SQL Injection Exploit08-06-2009
DM FileManager 3.9.2 Insecure Cookie Handling Vulnerability08-06-2009
Automated Link Exchange Portal 1.3 Multiple Remote Vulnerabilities08-06-2009
Joomla Component com_portafolio (cid) SQL injection Vulnerability08-06-2009
Frontis 3.9.01.24 (source_class) Remote SQL Injection Vulnerability08-06-2009
Virtue News (SQL-XSS) Multiple Remote Vulnerabilities08-06-2009
Grestul 1.2 Remote Add Administrator Account Exploit08-06-2009
SAP GUI 6.4 ActiveX (Accept) Remote Buffer Overflow PoC08-06-2009
Joomla Component MooFAQ (com_moofaq) LFI Vulnerability08-06-2009
httpdx <= 0.8 FTP Server Delete-Get-Create Directories-Files Exploit08-06-2009
Virtue Classifieds (category) SQL Injection Vulnerability08-06-2009
Virtue Book Store (cid) Remote SQL Injection Vulnerability08-06-2009
Virtue Shopping Mall (cid) Remote SQL Injection Vulnerability08-06-2009
Interlogy Profile Manager Basic Insecure Cookie Handling Vulnerability08-06-2009
Apple MACOS X xnu <= 1228.9.59 Local Kernel Root Exploit08-06-2009
VT-Auth 1.0 (zHk8dEes3.txt) File Disclosure Vulnerability08-06-2009
fipsCMS Light 2.1 (db.mdb) Remote Database Disclosure Vulnerability08-06-2009
Joomla Component com_school 1.4 (classid) SQL Injection Vulnerability08-06-2009
MyCars Automotive (Auth Bypass) SQL Injection Vulnerability08-06-2009
Kjtechforce mailman b1 (code) SQL Injection Delete Row Vulnerability05-06-2009
Kjtechforce mailman b1 (dest) Remote Blind SQL Injection Exploit05-06-2009
Pixelactivo 3.0 (Auth Bypass) Remote SQL Injection Vulnerability05-06-2009