BugSearch is an information portal focused on applications security, web oriented and not. We offer our services to disclose our registered users on security alerts found on the net, in order to warn them as soon as possible on bugs, system flaws, exploits and threats afflicting applications and possible patches.

New Feature: Post New Exploit

Register now to start receiving our security alerts of your favourite applications or try our new Android App which will keep you updated everywhere you are!


Last Advisories
DomPHP <= 0.81 Remote Add Administrator Exploit10-01-2008
SunOS 5.10 Remote ICMP Kernel Crash Exploit10-01-2008
MTCMS <= 2.0 Remote SQL Injection Vulnerabilities10-01-2008
DomPHP 0.81 (index.php page) Remote File Inclusion Vulnerability10-01-2008
Evilsentinel <= 1.0.9 (multiple vulnerabilities) Disable Exploit10-01-2008
Quicktime Player <= 7.3.1.70 (rtsp) Buffer Overflow Vulnerability10-01-2008
osData <= 2.08 Modules Php121 Local File Inclusion Vulnerability09-01-2008
UploadImage-UploadScript 1.0 Remote Change Admin Password Exploit09-01-2008
PHP Webquest 2.6 Get Database Credentials Vulnerability09-01-2008
Microsoft FoxServer (vfp6r.dll 6.0.8862.0) ActiveX Command Execution09-01-2008
Microsoft Rich Textbox Control 6.0 (SP6) SaveFile() Insecure Method09-01-2008
Microsoft VFP_OLE_Server ActiveX Remote Command Execution09-01-2008
Tuned Studios Templates Local File Inclusion Vulnerability09-01-2008
SAP MaxDB <= 7.6.03.07 pre-auth Remote Command Execution Exploit09-01-2008
McAfee E-Business Server Remote pre-auth Code Execution - DoS PoC09-01-2008
Docebo <= 3.5.0.3 (lib.regset.php) Command Execution Exploit09-01-2008
SAP MaxDB <= 7.6.03.07 pre-auth Remote Command Execution Exploit09-01-2008
SmallNuke 2.0.4 Pass Recovery Remote SQL Injection Exploit08-01-2008
Zero CMS 1.0 Alpha Arbitrary File Upload - SQL Injection Vulnerabilities08-01-2008
EvilBoard 0.1a (SQL-XSS) Multiple Remote Vulnerabilities08-01-2008
Microsoft DirectX SAMI File Parsing Remote Stack Overflow Exploit08-01-2008
PHP Webquest 2.6 (id_actividad) Remote SQL Injection Exploit08-01-2008
Move Networks Quantum Streaming Player SEH Overwrite Exploit08-01-2008
Gateway Weblaunch ActiveX Control Insecure Method Exploit08-01-2008
OneCMS 2.4 Remote SQL Injection - Upload Vulnerabilities07-01-2008
FlexBB <= 0.6.3 Cookies Remote SQL Injection Exploit07-01-2008
EkinBoard <= 1.1.0 Remote File Upload - Auth Bypass Vulnerabilities07-01-2008
Eggblog <= 3.1.0 Cookies Remote SQL Injection Exploit07-01-2008
TUTOS 1.3 (cmd.php) Remote Command Execution Vulnerability07-01-2008
ClamAV 0.91.2 libclamav MEW PE Buffer Overflow Exploit07-01-2008