BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Smartblog (index.php tid) Remote SQL Injection Vulnerability03-05-2008
HLDS WebMod 0.48 (rconpass) Remote Heap Overflow Exploit03-05-2008
phpDirectorySource 1.1 Multiple Remote SQL Injection Vulnerabilities03-05-2008
Microsoft Works 7 WkImgSrv.dll ActiveX Remote BOF Exploit02-05-2008
Open Auto Classifieds 1.4.3b Remote SQL Injection Vulnerabilities02-05-2008
ItCMS 1.9 (boxpop.php) Remote Code Execution Vulnerability02-05-2008
Joomla Component Webhosting (catid) Blind SQL Injection Exploit01-05-2008
ActualAnalyzer Lite (free) 2.78 Local File Inclusion Vulnerability01-05-2008
vlBook 1.21 (XSS-LFI) Multiple Remote Vulnerabilities01-05-2008
Project Based Calendaring System (PBCS) 0.7.1 Multiple Vulnerabilities30-04-2008
OxYProject 0.85 (edithistory.php) Remote Code Execution Vulnerability30-04-2008
Harris WapChat v.1 Multiple Remote File Inclusion Vulnerabilities30-04-2008
interact 2.4.1 Multiple Remote File Inclusion Vulnerabilities30-04-2008
SugarCRM Community Edition 4.5.1-5.0.0 File Disclosure Vulnerability29-04-2008
LokiCMS <= 0.3.3 Arbitrary File Delete Vulnerability29-04-2008
GroupWise 7.0 (mailto: scheme) Buffer Overflow PoC28-04-2008
Prozilla Hosting Index (directory.php cat_id) SQL Injection Vulnerability28-04-2008
Softbiz Web Host Directory Script (host_id) SQL Injection Vulnerability28-04-2008
MS Windows XP SP2 (win32k.sys) Privilege Escalation Exploit (MS08-025)28-04-2008
VLC 0.8.6d httpd_FileCallBack Remote Format String Exploit28-04-2008
Joovili 3.1 (browse.videos.php category) SQL Injection Vulnerability28-04-2008
MegaBBS Forum 2.2 (SQL-XSS) Multiple Remote Vulnerabilities27-04-2008
Jokes Site Script (jokes.php?catagorie) SQL Injection Vulnerability27-04-2008
FluentCMS (view.php sid) Remote SQL Injection Vulnerability27-04-2008
Content Management System for Phprojekt 0.6.1 File Disclosure Vuln27-04-2008
HP Software Update (Hpufunction.dll 4.0.0.1) Insecure Method PoC27-04-2008
Joomla Component com_alphacontent Blind SQL Injection Exploit27-04-2008
ODFaq 2.1.0 Blind SQL Injection Exploit27-04-2008
Joomla Component paxxgallery 0.2 (gid) Blind SQL Injection Exploit27-04-2008
Siteman 2.x (EXEC-LFI-XSS) Multiple Remote Vulnerabilities26-04-2008