REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
geeknik
79
linkks
75
sp1d3rs
68
jobert
67
someonenobbd
60
jon_bottarini
49
haxta4ok00
48
netfuzzer
48
ryat
47
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
Nextcloud
disclosed a bug submitted by
mik-patient
Vulnerable moment-timezone version shipped
08 Feb 2023
Nextcloud
disclosed a bug submitted by
mik-patient
Suspicious login app ships old league/flysystem version
08 Feb 2023
Hyperledger
disclosed a bug submitted by
r3drush
Dependency confusion in https://github.com/hyperledger/aries-mobile-agent-react-native
07 Feb 2023
Yelp
disclosed a bug submitted by
ilpadrino
Fraudulent claim of business.
06 Feb 2023
Nextcloud
disclosed a bug submitted by
supr4s
Mail app - blind SSRF via smtpHost parameter
06 Feb 2023
Nextcloud
disclosed a bug submitted by
supr4s
Mail app - Blind SSRF via Sierve server fonctionnality and sieveHost parameter
06 Feb 2023
Nextcloud
disclosed a bug submitted by
supr4s
Mail app - blind SSRF via imapHost parameter
06 Feb 2023
JetBlue
disclosed a bug submitted by
doosec101
Open Redirection
05 Feb 2023
JetBlue
disclosed a bug submitted by
doosec101
Access to tomcat-manager with default creds
05 Feb 2023
Internet Bug Bounty
disclosed a bug submitted by
kurohiro
CVE-2022-43551: Another HSTS bypass via IDN
03 Feb 2023
Sorare
disclosed a bug submitted by
gokulsk
Mystery with a leaked token and Reusability of email confirmation link leading to Account Takeover
03 Feb 2023
TikTok
disclosed a bug submitted by
amans
TikTok 2FA Bypass
03 Feb 2023
Shopify
disclosed a bug submitted by
kannthu
XSS at jamfpro.shopifycloud.com
02 Feb 2023
Judge.me
disclosed a bug submitted by
penguinshelp
Self-XSS due to image URL can be eploited via XSSJacking techniques in review email
01 Feb 2023
Judge.me
disclosed a bug submitted by
criptex
HTML INJECTION (STORED)
01 Feb 2023
Judge.me
disclosed a bug submitted by
penguinshelp
Improper Access Control in Ali Express Importer
01 Feb 2023
Judge.me
disclosed a bug submitted by
vj1naruto
Stored XSS in Public Profile Reviews
01 Feb 2023
Shopify
disclosed a bug submitted by
irisrumtub
Stored XSS in SVG file as data: url
31 Jan 2023
JetBlue
disclosed a bug submitted by
mmdz
Open Redirect at blueonboardingqa1.jetblue.com
29 Jan 2023
1
2
3
...
644
BY DENIS WERNER - @NOBBD -
IMPRESSUM