BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting26-03-2019
Microsoft Windows 7/2008 - 'Win32k' Denial of Service (PoC)26-03-2019
XooGallery - Multiple SQL Injection26-03-2019
Titan FTP Server Version 2019 Build 3505 - Directory Traversal / Local File Inclusion26-03-2019
VMware Workstation 14.1.5 / VMware Player 15.0.2 - Host VMX Process Impersonation Hijack Privilege Escalation25-03-2019
X-NetStat Pro 5.63 - Local Buffer Overflow25-03-2019
Jettweb PHP Hazır Haber Sitesi Scripti V3 - SQL Injection25-03-2019
Jettweb PHP Hazır Haber Sitesi Scripti V2 - SQL Injection (Authentication Bypass)25-03-2019
Jettweb PHP Hazır Haber Sitesi Scripti V1 - SQL Injection25-03-2019
Zeeways Jobsite CMS - 'id' SQL Injection25-03-2019
VMware Workstation 14.1.5 / VMware Player 15 - Host VMX Process COM Class Hijack Privilege Escalation25-03-2019
Apache CouchDB 2.3.1 - Cross-Site Request Forgery / Cross-Site Scripting25-03-2019
Zeeways Matrimony CMS - SQL Injection25-03-2019
Inout Article Base CMS - SQL Injection22-03-2019
snap - seccomp BBlacklist for TIOCSTI can be Circumvented22-03-2019
Meeplace Business Review Script - 'id' SQL Injection22-03-2019
Matri4Web Matrimony Website Script - Multiple SQL Injection22-03-2019
Bootstrapy CMS - Multiple SQL Injection21-03-2019
Canarytokens 2019-03-01 - Detection Bypass21-03-2019
MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting19-03-2019
Gila CMS 1.9.1 - Cross-Site Scripting19-03-2019
Netartmedia Real Estate Portal 5.0 - SQL Injection19-03-2019
Netartmedia PHP Mall 4.1 - SQL Injection19-03-2019
Advanced Host Monitor 11.92 beta - Local Buffer Overflow19-03-2019
eNdonesia Portal 8.7 - Multiple Vulnerabilities19-03-2019
Netartmedia Event Portal 2.0 - 'Email' SQL Injection19-03-2019
WinMPG Video Convert 9.3.5 - Denial of Service18-03-2019
WinAVI iPod/3GP/MP4/PSP Converter 4.4.2 - Denial of Service18-03-2019
TheCarProject 2 - Multiple SQL Injection18-03-2019
BMC Patrol Agent - Privilege Escalation Code Execution Execution (Metasploit)18-03-2019