BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Easy-Clanpage 2.2 (id) Remote SQL Injection Vulnerability18-03-2008
Exero CMS 1.0.1 (theme) Multiple Local File Inclusion Vulnerabilities17-03-2008
PHPauction GPL Enhanced 2.51 Multiple RFI Vulnerabilities17-03-2008
XOOPS Module Dictionary <= 0.94 Remote SQL Injection Vulnerability17-03-2008
Apple Safari (webkit) Remote Denial of Service Exploit (iphone-osx-win)17-03-2008
MG-SOFT Net Inspector 6.5.0.828 Multiple Remote Vulnerabilities17-03-2008
Home FTP Server 1.4.5 Remote Denial of Service Exploit17-03-2008
Registry Pro (epRegPro.ocx) Remote Insecure Method Exploit17-03-2008
Mutiple Timesheets <= 5.0 Multiple Remote Vulnerabilities16-03-2008
phpBP <= RC3 (2.204) FIX4 Remote SQL Injection Vulnerability16-03-2008
CA BrightStor ARCserve Backup r11.5 ActiveX Remote BOF Exploit16-03-2008
Rosoft Media Player 4.1.8 RML Stack Based Buffer Overflow PoC15-03-2008
MailEnable Pro-Ent <= 3.13 (Fetch) post-auth Remote BOF Exploit14-03-2008
VLC <= 0.8.6e Subtitle Parsing Local Buffer Overflow Exploit14-03-2008
eXV2 Module MyAnnonces (lid) Remote SQL Injection Vulnerability14-03-2008
eXV2 Module eblog 1.2 (blog_id) Remote SQL Injection Vulnerability14-03-2008
eXV2 Module Viso <= 2.0.4.3 (kid) Remote SQL Injection Vulnerability14-03-2008
eXV2 Module WebChat 1.60 (roomid) Remote SQL Injection Vulnerability14-03-2008
AuraCMS <= 2.2.1 (online.php) Remote Blind SQL Injection Exploit14-03-2008
Dovecot IMAP 1.0.10 <= 1.1rc2 Remote Email Disclosure Exploit14-03-2008
SunOS 5.10 Sun Cluster rpc.metad Denial of Service PoC14-03-2008
NetWin Surgemail 3.8k4-4 IMAP post-auth Remote LIST Universal Exploit14-03-2008
fuzzylime cms <= 3.01 (admindir) Remote File Inclusion Vulnerability14-03-2008
NetWin Surgemail 3.8k4-4 IMAP post-auth Remote LIST Universal Exploit14-03-2008
MDaemon IMAP server 9.6.4 (FETCH) Remote Buffer Overflow Exploit13-03-2008
MDaemon IMAP server 9.6.4 (FETCH) Remote Buffer Overflow Exploit13-03-2008
QuickTalk Forum <= 1.6 Remote Blind SQL Injection Exploit12-03-2008
XOOPS Module Gallery 0.2.2 (gid) Remote SQL Injection Vulnerability12-03-2008
XOOPS Module My_eGallery 3.04 (gid) SQL Injection Vulnerability12-03-2008
Fully Modded phpBB (kb.php) Remote SQL Injection Vulnerability12-03-2008