BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Serviio Media Server - checkStreamUrl Command Execution (Metasploit)17-05-2017
BuilderEngine 3.5.0 - Arbitrary File Upload and Execution (Metasploit)17-05-2017
Apple iOS < 10.3.2 - Notifications API Denial of Service17-05-2017
Adobe Flash - Margin Handling Heap Corruption17-05-2017
Dup Scout Enterprise 9.5.14 - GET Buffer Overflow (Metasploit)17-05-2017
Microsoft Windows - COM Aggregate Marshaler/IRemUnknown2 Type Confusion Privilege Escalation17-05-2017
Microsoft Windows - Running Object Table Register ROTFLAGS_ALLOWANYCLIENT Privilege Escalation17-05-2017
Adobe Flash - Out-of-Bounds Read in Getting TextField Width17-05-2017
Windows x32 / Windows x64 - cmd.exe Shellcode (718 bytes)17-05-2017
Mozilla Firefox 50 - 55 - Stack Overflow Denial of Service17-05-2017
Oracle PeopleSoft Enterprise PeopleTools < 8.55 - Remote Code Execution Via Blind XML External Entity17-05-2017
Microsoft Windows Windows 7/2008 R2 (x64) - 'EternalBlue' SMB Remote Code Execution (MS17-010)17-05-2017
Microsoft Windows Windows 8/2012 R2 (x64) - 'EternalBlue' SMB Remote Code Execution (MS17-010)17-05-2017
Mailcow 0.14 - Cross-Site Request Forgery15-05-2017
LabF nfsAxe 3.7 FTP Client - Buffer Overflow (SEH)15-05-2017
Microsoft Windows 7 Kernel - 'win32k!xxxClientLpkDrawTextEx' Stack Memory Disclosure15-05-2017
Quest Privilege Manager - pmmasterd Buffer Overflow (Metasploit)15-05-2017
Microsoft Windows 7 Kernel - Uninitialized Memory in the Default dacl Descriptor of System Processes Token15-05-2017
Microsoft Windows 10 Kernel - nt!NtTraceControl (EtwpSetProviderTraits) Pool Memory Disclosure15-05-2017
PlaySms 1.4 - Remote Code Execution14-05-2017
Halliburton LogView Pro 10.0.1 - Local Buffer Overflow (SEH)14-05-2017
Tecnovision DLX Spot - Authentication Bypass14-05-2017
Tecnovision DLX Spot - Arbitrary File Upload14-05-2017
Tecnovision DLX Spot - SSH Backdoor14-05-2017
OpenVPN 2.4.0 - Unauthenticated Denial of Service11-05-2017
Microsoft IIS WebDav - ScStoragePathFromUrl Overflow (Metasploit)11-05-2017
Vanilla Forums < 2.3 - Remote Code Execution11-05-2017
MiniUPnP MiniUPnPc < 2.0 - Remote Denial of Service11-05-2017
Linux Kernel 4.8.0 - Packet Socket Local root Privilege Escalation11-05-2017
BanManager WebUI 1.5.8 - PHP Code Injection10-05-2017