BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Dagger CMS 2008 (dir_inc) Remote File Inclusion Vulnerability23-06-2008
TinX CMS 1.1 (LFI-XSS) Multiple Remote Vulnerabilities23-06-2008
uTorrent - BitTorrent WebIU HTTP 1.7.7-6.0.1 Range header DoS Exploit23-06-2008
MM Chat 1.5 (LFI-XSS) Multiple Remote Vulnerabilities23-06-2008
Ourvideo CMS 9.5 (RFI-LFI-XSS) Multiple Remote Vulnerabilities23-06-2008
cmsWorks 2.2 RC4 (mod_root) Remote File Inclusion Vulnerability23-06-2008
cmsWorks 2.2 RC4 (fckeditor) Remote Arbitrary File Upload Exploit23-06-2008
Demo4 CMS 1b (fckeditor) Arbitrary File Upload Exploit23-06-2008
Joomla Component EXP Shop (catid) SQL Injection Vulnerability22-06-2008
DUdForum 3.0 (forum.asp iFor) Remote SQL Injection Vulnerability22-06-2008
sHibby sHop <= 2.2 (SQL-Update) Multiple Remote Vulnerabilities22-06-2008
CMS Mini 0.2.2 Multiple Local File Inclusion Vulnerabilities22-06-2008
phpDMCA 1.0.0 Multiple Remote File Inclusion Vulnerabilities22-06-2008
IGSuite 3.2.4 (reverse shell) Blind SQL Injection Exploit22-06-2008
PageSquid CMS (index.php page) Remote SQL Injection Vulnerability22-06-2008
RSS-Aggregator (display.php path) Remote File Inclusion Vulnerability22-06-2008
MiGCMS 2.0.5 Multiple Remote File Inclusion Vulnerabilities22-06-2008
HoMaP-CMS 0.1 (plugin_admin.php) Remote File Inclusion Vulnerability22-06-2008
HomePH Design 2.10 RC2 (RFI-LFI-XSS) Multiple Vulnerabilities22-06-2008
Hedgehog-CMS 1.21 (header.php) Local File Inclusion Vulnerability22-06-2008
CMReams CMS 1.3.1.1 Beta2 (LFI-XSS) Multiple Remote Vulnerabilities22-06-2008
ODARS CMS 1.0.2 Remote File Inclusion Vulnerability22-06-2008
SiteXS CMS 0.1.1 (Upload-XSS) Multiple Remote Vulnerabilities21-06-2008
@CMS 2.1.1 (readarticle.php article_id) SQL Injection Vulnerability21-06-2008
eNews 0.1 (delete.php) Arbitrary Delete Post Vulnerability21-06-2008
PHP KnowledgeBase Script 2.4 (cat_id) SQL Injection Vulnerability21-06-2008
Aprox CMS Engine v5(.1.0.4) Local File Inclusion Vulnerability21-06-2008
Scientific Image DataBase <= 0.41 Blind SQL Injection Exploit21-06-2008
LaserNet CMS <= 1.5 Arbitrary File Upload Exploit21-06-2008
LE.CMS <= 1.4 Remote Arbitrary File Upload Exploit21-06-2008