BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!

Last Advisories
phpBB 3.2.3 - Remote Code Execution12-12-2019
Oracle Weblogic Server - Deserialization Remote Command Execution (Patch Bypass)25-10-2019
pfSense 2.4.4-p3 (ACME Package 0.59_14) - Persistent Cross-Site Scripting29-05-2019
Qualcomm Android - Kernel Use-After-Free via Incorrect set_page_dirty() in KGSL29-05-2019
Oracle Application Testing Suite - WebLogic Server Administration Console War Deployment (Metasploit)29-05-2019
Spidermonkey - IonMonkey Leaks JS_OPTIMIZED_OUT Magic Value to Script29-05-2019
Spidermonkey - IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation29-05-2019
Free SMTP Server 2.5 - Denial of Service (PoC)29-05-2019
Petraware pTransformer ADC < - Login Bypass28-05-2019
EquityPandit 1.0 - Password Disclosure28-05-2019
Phraseanet < 4.0.7 - Cross-Site Scripting28-05-2019
Pidgin 2.13.0 - Denial of Service (PoC)27-05-2019
Typora - Directory Traversal27-05-2019
Deltek Maconomy 2.2.5 - Local File Inclusion27-05-2019
Opencart - 'extension/feed/google_base' Denial of Service PoC24-05-2019
Cyberoam SSLVPN Client - 'Connect To Server' Denial of Service (PoC)24-05-2019
Cyberoam General Authentication Client - 'Server Address' Denial of Service (PoC)24-05-2019
Microsoft Internet Explorer Windows 10 1809 17763.316 - Scripting Engine Memory Corruption24-05-2019
Axessh 4.2 - 'Log file name' Local Stack-based Buffer Overflow24-05-2019
Fast AVI MPEG Joiner - 'License Name' Denial of Service (PoC)24-05-2019
Cyberoam Transparent Authentication Suite - 'NetBIOS Name' Denial of Service (PoC)24-05-2019
Cyberoam Transparent Authentication Suite - 'Fully Qualified Domain Name' Denial of Service (PoC)24-05-2019
Cyberoam SSLVPN Client - 'HTTP Proxy' Denial of Service (PoC)24-05-2019
Apple Mac OS X - Feedback Assistant Race Condition (Metasploit)23-05-2019
Microsoft Windows 10 (17763.379) - Install DLL23-05-2019
NetAware 1.20 - 'Share Name' Denial of Service (PoC)23-05-2019
Shopware - createInstanceFromNamedArguments PHP Object Instantiation Remote Code Execution (Metasploit)23-05-2019
Visual Voicemail for iPhone - IMAP NAMESPACE Processing Use-After-Free23-05-2019
NetAware 1.20 - 'Add Block' Denial of Service (PoC)23-05-2019
Microsoft Windows 10 1809 - 'CmKeyBodyRemapToVirtualForEnum' Arbitrary Key Enumeration Privilege Escalation23-05-2019