BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Nokia Multimedia Player 1.0 (playlist) Universal SEH Overwrite Exploit09-03-2009
CMS S.Builder <= 3.7 Remote File Inclusion Vulnerability09-03-2009
isiAJAX v1 (praises.php id) Remote SQL Injection Vulnerability06-03-2009
OneOrZero Helpdesk <= 1.6.5.7 Local File Inclusion Vulnerability06-03-2009
Blue Eye CMS <= 1.0.0 Remote Cookie SQL Injection Vulnerability06-03-2009
Wili-CMS 0.4.0 (RFI-LFI-AB) Multiple Remote Vulnerabilities06-03-2009
Joomla com_ijoomla_archive Blind SQL Injection Exploit05-03-2009
Multiple Vendors libc:fts_*() Local Denial of Service Exploit05-03-2009
Media Commands (m3u File) Universal SEH Overwrite Exploit05-03-2009
Winamp <= 5.541 Skin Universal Buffer Overflow Exploit05-03-2009
SupportSoft DNA Editor Module (dnaedit.dll) Code Execution Exploit05-03-2009
CelerBB 0.0.2 Multiple Remote Vulnerabilities05-03-2009
Media Commands .m3l File Local Buffer Overflow Exploit05-03-2009
Winamp <= 5.41 Skin Universal Buffer Overflow Exploit05-03-2009
MS Internet Explorer 7 Memory Corruption Exploit (MS09-002) (fast)04-03-2009
Joomla com_carman 2.x (Itemid) Remote SQL Injection Exploit04-03-2009
EFS Easy Chat Server Authentication Request Buffer Overflow Exploit (pl)04-03-2009
Easy File Sharing Web Server 4.8 File Disclosure Vulnerability04-03-2009
Easy Web Password 1.2 Local Heap Memory Consumption PoC04-03-2009
Joomla com_reservation (Itemid) Remote SQL Injection Exploit04-03-2009
NovaBoard <= 1.0.1 (message) Persistent XSS Vulnerability03-03-2009
Jogjacamp JProfile Gold (id_news) Remote SQL Injection Vulnerability03-03-2009
Yaws < 1.80 (multiple headers) Remote Denial of Service Exploit03-03-2009
EFS Easy Chat Server (XSRF) Change Admin Pass Vulnerability03-03-2009
ghostscripter Amazon Shop (XSS-DT-RFI) Multiple Vulnerabilities03-03-2009
BlindBlog 1.3.1 (SQL-AB-LFI) Multiple Remote Vulnerabilities03-03-2009
EFS Easy Chat Server Authentication Request BOF Exploit (SEH)03-03-2009
Sopcast SopCore Control (sopocx.ocx) Command Execution Exploit03-03-2009
Imera ImeraIEPlugin ActiveX Control Remote Code Execution Exploit03-03-2009
Zabbix 1.6.2 Frontend Multiple Vulnerabilities03-03-2009