BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
tinyCMS 1.1.2 (templater.php) Local File Inclusion Vulnerability21-08-2008
EasySite 2.3 Multiple Remote Vulnerabilities21-08-2008
Anzio Web Print Object <= 3.2.30 ActiveX Buffer Overflow Exploit20-08-2008
Pars4U Videosharing V1 XSS - Remote Blind SQL Injection Exploit20-08-2008
phpBazar 2.0.2 (adid) Remote SQL Injection Vulnerability20-08-2008
webEdition CMS (we_objectID) Blind SQL Injection Exploit20-08-2008
Orca 2.0 (params.php) Remote File Inclusion Vulnerability20-08-2008
TWiki 4.2.0 (configure) Remote File Disclosure Vulnerability19-08-2008
SFS Affiliate Directory (id) SQL Injection Vulnerability19-08-2008
Ab Board (id) Remote SQL Injection Vulnerability19-08-2008
SunShop <= 4.1.4 (id) Remote SQL Injection Vulnerability19-08-2008
Banner Management Script (tr.php id) Remote SQL Injection Vulnerability19-08-2008
Active PHP Bookmarks 1.1.02 Remote SQL Injection Vulnerability19-08-2008
VidiScript (Avatar) Remote Arbitrary File Upload Vulnerability18-08-2008
cyberBB 0.6 Multiple Remote SQL Injection Vulnerabilities18-08-2008
PHP Live Helper <= 2.0.1 Multiple Remote Vulnerabilities18-08-2008
VMware Workstation (hcmon.sys 6.0.0.45731) Local DoS Vulnerability18-08-2008
XNova 0.8 sp1 (xnova_root_path) Remote File Inclusion Vulnerability17-08-2008
phpArcadeScript v4 (cat) Remote SQL Injection Vulnerability17-08-2008
FlashGet 1.9.0.1012 (FTP PWD Response) BOF Exploit (safeseh)17-08-2008
WS_FTP Home-Professional FTP Client Remote Format String PoC17-08-2008
PHPBasket (product.php pro_id) SQL Injection Vulnerability17-08-2008
ESET Smart Security 3.0.667.0 Privilege Escalation PoC16-08-2008
VLC 0.8.6i tta File Parsing Heap Overflow PoC16-08-2008
EO Video 1.36 Local Heap Overflow DOS - PoC16-08-2008
dotCMS 1.6 (id) Multiple Local File Inclusion Vulnerabilities15-08-2008
FlashGet 1.9.0.1012 (FTP PWD Response) SEH STACK Overflow Exploit15-08-2008
ZEEJOBSITE 2.0 (adid) Remote SQL Injection Vulnerability15-08-2008
DeeEmm CMS (DMCMS) 0.7.4 Multiple Remote Vulnerabilities15-08-2008
FlashGet 1.9.0.1012 (FTP PWD Response) SEH STACK Overflow Exploit15-08-2008