BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
vShare Youtube Clone 2.6 (tid) Remote SQL Injection Vulnerability08-05-2008
SazCart 1.5.1 Multiple Remote File Inclusion Vulnerabilities08-05-2008
Cyberfolio 7.12 (rep) Remote File Inclusion Vulnerability08-05-2008
miniBloggie 1.0 (del.php) Arbitrary Delete Post Vulnerability08-05-2008
TFTP Server for Windows 1.4 ST Remote BSS Overflow Exploit08-05-2008
fipsCMS (print.asp lg) Remote SQL Injection Vulnerability07-05-2008
Galleristic 1.0 (index.php cat) Remote SQL Injection Exploit07-05-2008
gameCMS Lite 1.0 (index.php systemId) SQL Injection Vulnerability07-05-2008
PostcardMentor (step1.asp cat_fldAuto) SQL Injection Vulnerability07-05-2008
OneCMS 2.5 Remote Blind SQL Injection Exploit07-05-2008
CMS Faethon 2.2 Ultimate (RFI-XSS) Multiple Remote Vulnerabilies07-05-2008
ezContents CMS 2.0.0 Multiple Remote SQL Injection Vulnerabilities07-05-2008
Musicbox <= 2.3.7 (artistId) Remote SQL Injection Vulnerability07-05-2008
Pre Shopping Mall 1.1 (search.php search) SQL Injection Vulnerability06-05-2008
PHPEasyData 1.5.4 (cat_id) Remote SQL Injection Vulnerability06-05-2008
PostNuke Module pnEncyclopedia <= 0.2.0 SQL Injection Vulnerability05-05-2008
Online Rental Property Script <= 4.5 (pid) SQL Injection Vulnerability05-05-2008
Anserv Auction XL (viewfaqs.php cat) SQL Injection Vulnerability05-05-2008
Kmita Tellfriend <= 2.0 (file) Remote File Inclusion Vulnerability05-05-2008
Kmita Mail <= 3.0 (file) Remote File Inclusion Vulnerability05-05-2008
BackLinkSpider (cat_id) Remote SQL Injection Vulnerability05-05-2008
Novell eDirectory < 8.7.3 SP 10 - 8.8.2 HTTP headers DOS Vulnerability05-05-2008
Miniweb 2.0 (historymonth) Remote SQL Injection Vulnerability05-05-2008
Power Editor 2.0 Remote File Disclosure - Edit Vulnerability05-05-2008
DeluxeBB <= 1.2 Multiple Remote Vulnerabilities Exploit05-05-2008
cpLinks 1.03 (bypass-SQL-XXS) Multiple Remote Vulnerabilities04-05-2008
ScorpNews 1.0 (example.php site) Remote File Inclusion Vulnerability04-05-2008
Scout Portal Toolkit <= 1.4.0 (ParentId) Remote SQL Injection Exploit04-05-2008
BlogMe PHP (comments.php id) SQL Injection Vulnerability03-05-2008
HLDS WebMod 0.48 Multiple Remote Vulnerabilties03-05-2008