BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
nuBoard 0.5 (threads.php ssid) SQL Injection Vulnerability14-02-2008
artmedic weblog 1.0 Multiple Local File Inclusion Vulnerabilities14-02-2008
Joomla Component paxxgallery 0.2 (iid) SQL Injection Vulnerability14-02-2008
Joomla Component MCQuiz 0.9 Final (tid) SQL Injection Vulnerability14-02-2008
Joomla Component Quiz <= 0.81 (tid) SQL Injection Vulnerability14-02-2008
Joomla Component mediaslide (albumnum) Blind SQL Injection Exploit14-02-2008
LookStrike Lan Manager 0.9 Remote - Local File Inclusion Vulnerabilities14-02-2008
Rosoft Media Player 4.1.8 M3U File Remote Buffer Overflow PoC14-02-2008
Scribe <= 0.2 (index.php page) Local File Inclusion Vulnerability14-02-2008
freePHPgallery 0.6 Cookie Local File Inclusion Vulnerability14-02-2008
PHP Live! <= 3.2.2 (questid) Remote SQL Injection Vulnerability14-02-2008
Microsoft Office .WPS File Stack Overflow Exploit (MS08-011)13-02-2008
Affiliate Market Ver.0.1 BETA (language) Local File Inclusion Vulnerability13-02-2008
Joomla Component xfaq 1.2 (aid) Remote SQL Injection Vulnerability13-02-2008
QuickTime 7.4.1 QTPlugin.ocx Multiple Stack Overflow Vulnerabilities13-02-2008
IBM Domino Web Access Upload Module SEH Overwrite Exploit13-02-2008
JSPWiki 2.4.104 - 2.5.139 Multiple Remote Vulnerabilities13-02-2008
vKios <= 2.0.0 (products.php cat) Remote SQL Injection Exploit12-02-2008
FaceBook PhotoUploader <= 5.0.14.0 Remote Buffer Overflow Exploit12-02-2008
Joomla Component rapidrecipe <= 1.6.5 SQL Injection Vulnerability12-02-2008
Joomla Component pcchess <= 0.8 Remote SQL Injection Vulnerability12-02-2008
AuraCMS 2.2 (gallery_data.php) Remote SQL Injection Exploit12-02-2008
Citrix Presentation Server Client WFICA.OCX ActiveX Heap BOF Exploit12-02-2008
PKs Movie Database 3.0.3 XSS - SQL Injection Vulnerabilities10-02-2008
ITechBids 6.0 (detail.php item_id) SQL Injection Vulnerability10-02-2008
SAPID CMF Build 87 (last_module) Remote Code Execution Vulnerability10-02-2008
PacerCMS 0.6 (last_module) Remote Code Execution Vulnerability10-02-2008
Mix Systems CMS (parent-id) Remote SQL Injection Exploit10-02-2008
ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX BOF Exploit10-02-2008
Microsoft DirectSpeechSynthesis Module Remote Buffer Overflow Exploit09-02-2008