REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'ooooooo_q'
50
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Acronis'
disclosed a bug submitted by
b'mr-medi'
b'Render content from untrusted sources via web_preview endpoint on Acronis Cloud'
09 Dec 2024
b'curl'
disclosed a bug submitted by
b'napol-webug'
b'Buffer Overflow Risk in Curl_inet_ntop and inet_ntop4'
08 Dec 2024
b'Mozilla'
disclosed a bug submitted by
b'ebrietas'
b'RCE on worker host due to unsanitized "env" variable name in task definition on community-tc.services.mozilla.com'
08 Dec 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'nhienit2010'
b'CVE-2024-45498: Apache Airflow Command injection in read_dataset_event_from_classic DAG'
07 Dec 2024
b'Mozilla'
disclosed a bug submitted by
b'haveaniceday'
b'[ addons-preview-cdn.mozilla.net ] A subdomain takeover is available via unregistered domain in Fastly'
06 Dec 2024
b'Acronis'
disclosed a bug submitted by
b'mrityu'
b'IP restriction bypass via X-Forwarded-For header'
05 Dec 2024
b'Nextcloud'
disclosed a bug submitted by
b'pseudo-llrktbeyk'
b'Invisible Salamanders Attack against end_to_end_encryption in Nextcloud'
03 Dec 2024
b'Localize'
disclosed a bug submitted by
b'black_world'
b'open redirected by host header'
02 Dec 2024
b'curl'
disclosed a bug submitted by
b'tix01'
b'Buffer Overflow Vulnerability in strcpy() Leading to Remote Code Execution'
02 Dec 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'mprogrammer'
b'CVE-2024-41990: Potential denial-of-service in django.utils.html.urlize()'
30 Nov 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'manun'
b'CVE-2024-49761: ReDoS vulnerability in REXML'
30 Nov 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'ooooooo_q'
b'[CVE-2024-47888] Possible ReDoS vulnerability in plain_text_for_blockquote_node in Action Text'
28 Nov 2024
b'Acronis'
disclosed a bug submitted by
b'analyz3r'
b'Rate limit bypass on passport.acronis.work using X-Forwarded-For request header'
28 Nov 2024
b'Mars'
disclosed a bug submitted by
b'kh4rish34v3n'
b' when adding branches to your account'
26 Nov 2024
b'Mars'
disclosed a bug submitted by
b'kh4rish34v3n'
b'RXSS on via configUrl parameter'
26 Nov 2024
b'Mars'
disclosed a bug submitted by
b'itsmatinx'
b'Insecure API Response Leads to Disclosure of Hashed Passwords'
26 Nov 2024
b'Mars'
disclosed a bug submitted by
b'the-white-evil'
b'Reflected HTML Injection via contact (faq) search parameter on '
25 Nov 2024
b'Mars'
disclosed a bug submitted by
b'the-white-evil'
b'Reflected HTML Injection via contact (faq) search parameter on ]='
25 Nov 2024
b'Mars'
disclosed a bug submitted by
b'abfe'
b'unsubscribe anyone from all emails @ '
25 Nov 2024
1
2
3
...
716
BY DENIS WERNER - @NOBBD -
IMPRESSUM