BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Web Wiz Guestbook 8.21 (WWGguestbook.mdb) DD Vulnerability16-12-2008
FLDS 1.2a report.php (linkida) Remote SQL Injection Exploit16-12-2008
Aiyoota! CMS - Blind SQL Injection Exploit16-12-2008
Gnews Publisher .NET (authors.asp authorID) SQL Injection Vulnerability16-12-2008
Barracuda Spam Firewall v3.5.11.020, Model 600 SQL Injection Vuln16-12-2008
Liberum Help Desk 0.97.3 (SQL-DD) Remote Vulnerabilities16-12-2008
Zelta E Store (RFU-BYPASS-R-SQL-B-SQL) Multiple Vulnerabilities16-12-2008
Nukedit 4.9.8 Remote Database Disclosure Vulnerability16-12-2008
Realtek Sound Manager (rtlrack.exe v. 1.15.0.0) PlayList BOF Exploit16-12-2008
XOOPS Module Amevents (print.php id) SQL Injection Vulnerability15-12-2008
MS Internet Explorer XML Parsing Buffer Overflow Exploit (allinone)15-12-2008
The Rat Cms Alpha 2 (Auth Bypass) SQL Injection Vulnerability15-12-2008
Mediatheka 4.2 Remote Blind SQL Injection Expoit15-12-2008
BabbleBoard 1.1.6 (username) CSRF-Cookie Grabber Exploit15-12-2008
Forest Blog 1.3.2 (blog.mdb) Remote Database Disclosure Vulnerability15-12-2008
CodeAvalanche Directory (CADirectory.mdb) Database Disclosure Vuln15-12-2008
Amaya Web Browser 10.0.1-10.1-pre5 (html tag) Buffer Overflow PoC15-12-2008
CodeAvalanche FreeForAll (CAFFAPage.mdb) Database Disclosure Vuln15-12-2008
CodeAvalanche FreeWallpaper Remote Database Disclosure Vulnerability15-12-2008
CodeAvalanche Articles (CAArticles.mdb) Database Disclosure Vuln15-12-2008
CodeAvalanche RateMySite (CARateMySite.mdb) Database Disclosure15-12-2008
eZ Publish < 3.9.5-3.10.1-4.0.1 (token) Privilege Escalation Exploit15-12-2008
FLDS 1.2a (lpro.php id) Remote SQL Injection Vulnerability15-12-2008
WorkSimple 1.2.1 RFI - Sensitive Data Disclosure Vulnerabilities15-12-2008
Aperto Blog 0.1.1 Local File Inclusion - SQL Injection Vulnerabilities15-12-2008
CFAGCMS v1 (right.php title) SQL Injection Vulnerability15-12-2008
Click&BaneX Multiple Remote SQL Injection Vulnerabilities15-12-2008
ClickAndEmaiL (SQL-XSS) Multiple Remote Vulnerabilities15-12-2008
Click&Rank (SQL-XSS) Multiple Remote Vulnerabilities15-12-2008
IsWeb CMS 3.0 (SQL-XSS) Multiple Remote Vulnerabilities14-12-2008