REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
57
b'ooooooo_q'
50
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Internet Bug Bounty'
disclosed a bug submitted by
b'nyymi'
b'netrc and redirect credential leak'
15 Jan 2025
b'Flickr'
disclosed a bug submitted by
b'himu_xjjj'
b'Information Disclosure: .dockerignore file is publicly accessible'
14 Jan 2025
b'Basecamp'
disclosed a bug submitted by
b'shezxi'
b'Critical Data Breach - Big Data for all domains'
14 Jan 2025
b'Nextcloud'
disclosed a bug submitted by
b'offensiveops'
b'Blind SSRF Vulnerability in Appstore Release Upload Form'
14 Jan 2025
b'Doppler'
disclosed a bug submitted by
b'clubbable'
b'WAF bypass and java script incomplete handling of Unicode characters might leads to dom-xss'
13 Jan 2025
b'Trellix'
disclosed a bug submitted by
b'r4v'
b'Unauthenticated Path Traversal and Command Injection in Trellix Enterprise Security Manager 11.6.10'
12 Jan 2025
b'MTN Group'
disclosed a bug submitted by
b'tinopreter'
b'Yet Another OTP code Leaked in the API Response'
08 Jan 2025
b'MTN Group'
disclosed a bug submitted by
b'tinopreter'
b'SQL injection in URL path leads to Database Access'
08 Jan 2025
b'MTN Group'
disclosed a bug submitted by
b'tinopreter'
b'OTP code Leaked in API Response '
08 Jan 2025
b'Mozilla'
disclosed a bug submitted by
b'jabiyev'
b'Denial of Access to Static Resources via Cache Poisoning on addons.allizom.org'
08 Jan 2025
b'Mozilla'
disclosed a bug submitted by
b'dotxml'
b'Bypass Email Verification on Add Email Monitoring'
07 Jan 2025
b'Internet Bug Bounty'
disclosed a bug submitted by
b'saurabhb'
b'Apache Airflow: Sensitive Information Exposure in DAG Run Logs'
30 Dec 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'saurabhb'
b'Secrets not masked in UI when sensitive variables are set via Airflow cli'
30 Dec 2024
b'Truecaller '
disclosed a bug submitted by
b'marcotuliocnd'
b'Lack of URL Validation in avatarUrl at /v4/profile'
28 Dec 2024
b'Acronis'
disclosed a bug submitted by
b'darkdream'
b'[oem.acronis.com] Reflected Cross Site Scripting '
28 Dec 2024
b'AWS VDP'
disclosed a bug submitted by
b'zolaer9527'
b'A potential risk in the aws-lambda-ecs-run-task which can be used to privilege escalation.'
27 Dec 2024
b'curl'
disclosed a bug submitted by
b'scottarterbury'
b'Hackers Attack Curl Vulnerability Accessing Sensitive Information'
27 Dec 2024
b'MTN Group'
disclosed a bug submitted by
b'nhx1'
b'DOM Based Reflected Cross Site Scripting'
25 Dec 2024
b'MTN Group'
disclosed a bug submitted by
b'nhx1'
b'Information disclosure via enabled Django Debug Mode '
25 Dec 2024
1
2
3
...
718
BY DENIS WERNER - @NOBBD -
IMPRESSUM