BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
BulletProof FTP Client 2.63 Local Heap Overflow PoC24-12-2008
Joomla Component Ice Gallery 0.5b2 (catid) Blind SQL Injection Vuln24-12-2008
Joomla Component Live Ticker 1.0 (tid) Blind SQL Injection Vuln24-12-2008
Joomla Component mdigg 2.2.8 (category) SQL Injection Vuln24-12-2008
Joomla Component com_lowcosthotels (id) Blind SQL Injection Vulnerability23-12-2008
Joomla Component com_allhotels (id) Blind SQL Injection Vulnerability23-12-2008
Google Chrome Browser (ChromeHTML:--) Remote Parameter Injection23-12-2008
phpGreetCards XSS-Arbitrary File Upload Vulnerability23-12-2008
phpAdBoard (php uploads) Arbitrary File Upload Vulnerability23-12-2008
phpEmployment (php upload) Arbitrary File Upload Vulnerability23-12-2008
Getleft 1.2 Remote Buffer Overflow Proof of Concept23-12-2008
StormBoard 1.0.1 (thread.php id) SQL Injection Vulnerability23-12-2008
phpLD 3.3 (page.php name) Blind SQL Injection Vulnerability23-12-2008
CMS NetCat 3.12 (password_recovery.php) Blind SQL Injection Exploit23-12-2008
CMS NetCat <= 3.12 Multiple Remote Vulnerabilities23-12-2008
Joomla Component com_lowcosthotels (id) Blind SQL Injection Vuln23-12-2008
Mozilla Firefox 3.0.5 location.hash Remote Crash Exploit23-12-2008
Psi Jabber Client (8010-tcp) Remote Denial of Service Exploit (win-lin)23-12-2008
PGP Desktop 9.0.6 (PGPwded.sys) Local Denial of Service Exploit23-12-2008
PHPmotion <= 2.1 CSRF Vulnerability23-12-2008
RoundCube Webmail <= 0.2-3 beta Code Execution Vulnerability22-12-2008
Pligg 9.9.5b (check_url.php url) Upload Shell-SQL Injection Exploit22-12-2008
YourPlace <= 1.0.2 Multiple Remote Vulnerabilities + RCE Exploit22-12-2008
Joomla Component Volunteer 2.0 (job_id) SQL Injection Vulnerability22-12-2008
CoolPlayer 2.19 (Skin File) Local Buffer Overflow Exploit (py)22-12-2008
SolarCMS 0.53.8 (Forum) Remote Cookies Disclosure Exploit22-12-2008
Wordpress Plugin Page Flip Image Gallery <= 0.2.2 Remote FD Vuln22-12-2008
RSS Simple News (news.php pid) Remote SQL Injection Exploit22-12-2008
Text Lines Rearrange Script (filename) File Disclosure Vulnerability22-12-2008
Calendar Script 1.1 (Auth Bypass) SQL Injection Vulnerability22-12-2008