BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF PoC14-08-2008
ACGSurf 1.0 (adid) Remote SQL Injection Vulnerability14-08-2008
ACG-PTP 1.0.6 (adid) Remote SQL Injection Vulnerability14-08-2008
gelato CMS 0.95 (img) Remote File Disclosure Vulnerability13-08-2008
BIND 9.5.0-P2 (randomized ports) Remote DNS Cache Poisoning Exploit13-08-2008
Ventrilo <= 3.0.2 NULL pointer Remote DoS Exploit13-08-2008
IntelliTamper 2.07-2.08 Beta 4 A HREF Remote Buffer Overflow Exploit13-08-2008
Ruby <= 1.9 (regex engine) Remote Socket Memory Leak Exploit13-08-2008
FlashGet 1.9 (FTP PWD Response) Remote BOF Exploit PoC 0day13-08-2008
BBlog 0.7.6 (mod) Remote SQL Injection Vulnerability12-08-2008
Joomla 1.5.x (Token) Remote Admin Change Password Vulnerability12-08-2008
Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability11-08-2008
ZeeBuddy 2.1 (bannerclick.php adid) SQL Injection Vulnerability11-08-2008
Ppim <= 1.0 (upload-change password) Multiple Vulnerabilities11-08-2008
Ovidentia 6.6.5 (item) Remote SQL Injection Vulnerability11-08-2008
Ppim <= 1.0 (Arbitrary File Delete-XSS) Multiple Vulnerabilities10-08-2008
Download Accelerator Plus - DAP 8.6 (AniGIF.ocx) Buffer Overflow PoC10-08-2008
BlazeDVD 5.0 PLF Playlist File Remote Buffer Overflow Exploit10-08-2008
Sun xVM VirtualBox < 1.6.4 Privilege Escalation Vulnerability PoC10-08-2008
e107 <= 0.7.11 Arbitrary Variable Overwriting Vulnerability10-08-2008
Cisco WebEx Meeting Manager (atucfobj.dll) ActiveX Remote BOF Exploit10-08-2008
Vacation Rental Script 3.0 (id) Remote SQL Injection Vulnerability10-08-2008
Gallery 1.5.7, 1.6-alpha3 (phpEx) Local File Inclusion Vulnerability10-08-2008
Quicksilver Forums 1.4.1 forums[] Remote SQL Injection Exploit10-08-2008
txtSQL 2.2 Final (startup.php) Remote File Inclusion Vulnerability10-08-2008
PHP-Ring Webring System 0.9.1 Insecure Cookie Handling Vulnerability10-08-2008
psipuss 1.0 Multiple Remote SQL Injection Vulnerabilities10-08-2008
IntelliTamper 2.07 HTTP Header Remote Code Execution Exploit10-08-2008
OpenImpro 1.1 (image.php id) SQL Injection Vulnerability10-08-2008
Multiple Wsn Products (LFI) Code Execution Vulnerability06-08-2008