BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
Limbo CMS <= 1.0.4.2 Cuid cookie Blind SQL Injection Exploit09-02-2008
DomPHP 0.82 (index.php page) Local File Inclusion Vulnerability09-02-2008
Open-Realty <= 2.4.3 (last_module) Remote Code Execution Exploit09-02-2008
Journalness <= 4.1 (last_module) Remote Code Execution exploit09-02-2008
Linux Kernel 2.6.17 - 2.6.24.1 vmsplice Local Root Exploit09-02-2008
Linux Kernel 2.6.23 - 2.6.24 vmsplice Local Root Exploit09-02-2008
Mambo Component Comments <= 0.5.8.5g SQL Injection Vulnerability09-02-2008
PowerNews (Newsscript) 2.5.6 Local File Inclusion Vulnerabilities08-02-2008
Joomla Component NeoGallery 1.1 SQL Injection Vulnerability08-02-2008
Mambo Component com_gallery Remote SQL Injection Vulnerability08-02-2008
jetAudio <= 7.0.5 (.ASX) Remote Stack Overflow Exploit PoC08-02-2008
ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX Buffer Overflow PoC08-02-2008
osCommerce Addon Customer Testimonials 3.1 SQL Injection Vulnerability07-02-2008
Mambo Component Sermon 0.2 (gid) SQL Injection Vulnerability07-02-2008
Total Video Player 1.20 M3U File Local Stack Buffer Overflow Exploit07-02-2008
Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit07-02-2008
SapLPD 6.28 Remote Buffer Overflow Exploit (win32)07-02-2008
Joomla Component com_doc Remote SQL Injection Vulnerability07-02-2008
Joomla Component com_noticias 1.0 SQL Injection Vulnerability07-02-2008
SapLPD 6.28 Remote Buffer Overflow Exploit (win32)07-02-2008
OpenSiteAdmin <= 0.9.1.1 Multiple File Inclusion Vulnerabilities06-02-2008
dBpowerAMP Audio Player Release 2 M3U File Buffer Overflow Exploit06-02-2008
MyBulletinBoard (MyBB) <= 1.2.11 private.php SQL Injection Exploit06-02-2008
Astanda Directory Project 1.2 (link_id) SQL Injection Vulnerability06-02-2008
Joomla Component Ynews 1.0.0 (id) Remote SQL Injection Vulnerability06-02-2008
Mambo Component com_downloads Remote SQL Injection Vulnerability06-02-2008
Mihalism Multi Host Download (Username) Blind SQL Injection Exploit06-02-2008
RMSOFT Gallery System 2.0 (images.php id) SQL Injection Vulnerability05-02-2008
NERO Media Player <= 1.4.0.35b M3U File Buffer Overflow PoC05-02-2008
All Club CMS <= 0.0.1f index.php Remote SQL Injection Vulnerability05-02-2008