BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Jamit Job Board 3.4.10 (show_emp) Blind SQL Injection Vulnerability25-11-2008
fuzzylime cms 3.03 (track.php p) Local File Inclusion Vulnerability25-11-2008
SimpleBlog 3.0 (simpleBlog.mdb) Database Disclosure Vulnerability25-11-2008
Bandwebsite 1.5 (SQL-XSS) Multiple Remote Vulnerabilities24-11-2008
WebStudio CMS (index.php pageid) Blind SQL Injection Vulnerability24-11-2008
Quicksilver Forums <= 1.4.2 RCE Exploit (windows only)24-11-2008
FTPzik (XSS-LFI) Multiple Remote Vulnerabilities24-11-2008
W3C Amaya 10.1 Web Browser (URL Bar) Remote Stack Overflow PoC24-11-2008
Goople Cms 1.7 Arbitrary Code Execution Vulnerability24-11-2008
VideoScript 3.0 <= 4.0.1.50 Official Shell Injection Exploit24-11-2008
VideoScript 3.0 <= 4.1.5.55 Unofficial Shell Injection Exploit24-11-2008
W3C Amaya 10.1 Web Browser (id) Remote Stack Overflow PoC24-11-2008
NetArtMedia Real Estate Portal 1.2 (ad_id) SQL Injection Vuln24-11-2008
Nero ShowTime 5.0.15.0 m3u Playlist File Remote Buffer Overflow PoC24-11-2008
Total Video Player (vcen.dll) Remote off by one Crash Exploit24-11-2008
Siemens C450IP-C475IP Remote Denial of Service Vulnerability24-11-2008
Pie Web M{a,e}sher 0.5.3 Multiple Remote File Inclusion Vulnerability24-11-2008
Nitrotech 0.0.3a (RFI-SQL) Multiple Remote Vulnerabilities24-11-2008
PG Roomate Finder Solution (Auth Bypass) SQL Injection Vulnerability23-11-2008
PG Job Site (poll_view_id) Blind SQL Injection Vulnerability23-11-2008
NetArtMedia Cars Portal 2.0 (image.php id) SQL Injection Vulnerability23-11-2008
NetArtMedia Blog System (image.php id) SQL Injection Vulnerability23-11-2008
PG Real Estate (Auth Bypass) SQL Injection Vulnerability23-11-2008
Microsoft XML Core Services DTD Cross-Domain Scripting PoC MS08-06923-11-2008
Goople Cms 1.7 Remote File Upload Vulnerability23-11-2008
Prozilla Hosting Index (id) Remote SQL Injection Vulnerability23-11-2008
PHP Classifieds Script Remote Database Disclosure Vulnerability23-11-2008
MauryCMS <= 0.53.2 (fckeditor) Remote Arbitrary File Upload Vuln23-11-2008
MODx CMS <= 0.9.6.2 (RFI-XSS) Multiple Remote Vulnerabilities23-11-2008
Goople Cms 1.7 Insecure Cookie Handling Vulnerability23-11-2008