BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
MySQL 4-5-6 UDF for Command Execution25-01-2009
Merak Media Player 3.2 m3u file Local Buffer Overflow PoC25-01-2009
Siemens ADSL SL2-141 CSRF Exploit25-01-2009
MemHT Portal <= 4.0.1 (avatar) Remote Code Execution Exploit25-01-2009
Mambo com_sim v0.8 Blind SQL Injection Exploit25-01-2009
Web-Calendar Lite 1.0 (Auth Bypass) SQL Injection Vulnerability25-01-2009
Flax Article Manager 1.1 (cat_id) SQL Injection Vulnerability25-01-2009
OpenGoo 1.1 (script_class) Local File Inclusion Vulnerability25-01-2009
EPOLL SYSTEM 3.1 (password.dat) Disclosure Exploit25-01-2009
FTPShell Server 4.3 (licence key) Remote Buffer Overflow PoC22-01-2009
Pardal CMS <= 0.2.0 Blind SQL Injection Exploit22-01-2009
Browser3D 3.5 (.sfs File) Local Stack Overflow Exploit (c)22-01-2009
asp-project 1.0 Insecure Cookie Method Vulnerability22-01-2009
Browser3D 3.5 (.sfs File) Local Stack Overflow Exploit22-01-2009
OwnRS Blog 1.2 (autor.php) SQL Injection Vulnerability22-01-2009
AXIS 70U Network Document Server Privilege Escalation-XSS21-01-2009
Joomla com_pcchess (game_id) Blind SQL Injection Exploit21-01-2009
Joomla Component beamospetition 1.0.12 SQL Injection - XSS21-01-2009
Browser3D 3.5 (.sfs File) Local Buffer Overflow Exploit21-01-2009
Sad Raven's Click Counter 1.0 passwd.dat Disclosure Exploit21-01-2009
Joomla Com BazaarBuilder Shopping Cart v.5.0 SQL Injection Exploit21-01-2009
Mambo Component SOBI2 RC 2.8.2 (bid) SQL Injection Vulnerability21-01-2009
Firefox 3.0.5 Status Bar Obfuscation - Clickjacking21-01-2009
Total Video Player 1.31 (DefaultSkin.ini) Local Stack Overflow Exploit20-01-2009
LinPHA Photo Gallery 2.0 Remote Command Execution Exploit20-01-2009
Dodo's Quiz Script 1.1 (dodosquiz.php) Local File Inclusion Vulnerability20-01-2009
Max.Blog 1.0.6 Arbitrary Delete Post Exploit20-01-2009
AJ Auction Pro OOPD 2.3 (id) SQL Injection Vulnerability20-01-2009
Ninja Blog 4.8 (CSRF-HTML Injection) Vulnerability19-01-2009
Joomla com_waticketsystem Blind SQL Injection Exploit19-01-2009