REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
geeknik
79
linkks
75
jobert
69
sp1d3rs
68
someonenobbd
61
nyymi
53
jon_bottarini
49
haxta4ok00
48
netfuzzer
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
GitLab
disclosed a bug submitted by
bull
Account takeover due to insufficient URL validation on RelayState parameter
30 May 2023
Nextcloud
disclosed a bug submitted by
unknownsh
Blind SSRF as normal user from mailapp
30 May 2023
GitLab
disclosed a bug submitted by
mike12
Stored XSS in merge request pages
30 May 2023
GitLab
disclosed a bug submitted by
mike12
Blind SSRF in FogBugz project import
30 May 2023
GitLab
disclosed a bug submitted by
mike12
Domain Takeover - gl-canary.freetls.fastly.net
30 May 2023
Internet Bug Bounty
disclosed a bug submitted by
nyymi
CVE-2023-28320 - siglongjmp race condition
26 May 2023
Cloudflare Public Bug Bounty
disclosed a bug submitted by
albertspedersen
Privilege escalation to root in Pages build image v2
26 May 2023
Internet Bug Bounty
disclosed a bug submitted by
bean-zhang
Authenticated but unauthorized users may enumerate Application names via the API
25 May 2023
Kubernetes
disclosed a bug submitted by
snoopysecurity
Git Arg Injection in kubernetes-sigs/release-sdk
25 May 2023
Kubernetes
disclosed a bug submitted by
gaffy
Bypass validation parts in AWS IAM Authenticator for Kubernetes
25 May 2023
curl
disclosed a bug submitted by
wct
CVE-2023-28319: UAF in SSH sha256 fingerprint check
24 May 2023
LinkedIn
disclosed a bug submitted by
ultrapowa
Entire database of emails exposed through URN injection
22 May 2023
Expedia Group Bug Bounty
disclosed a bug submitted by
maskopatol
https://www.wotif.com/vc/blog/info.php script is prone to reflected HTML/CSS injection and COOKIE leak
20 May 2023
curl
disclosed a bug submitted by
dhananjay09
Cache purge requests are not authenticated
20 May 2023
Slack
disclosed a bug submitted by
violet
Unauthorized access to GovSlack
19 May 2023
Automattic
disclosed a bug submitted by
riadalrashed
Stored XSS on wordpress.com
19 May 2023
U.S. Department of State
disclosed a bug submitted by
carpc
Impact of Using the PHP Function "phpinfo()" on System Security - PHP info page disclosure
18 May 2023
Internet Bug Bounty
disclosed a bug submitted by
ksw9722
Privilege Esacalation at Apache Airflow 2.5.1
18 May 2023
Reddit
disclosed a bug submitted by
helloitscyberguard
Rate limit is implemented in Reddit , but its not working .
18 May 2023
1
2
3
...
658
BY DENIS WERNER - @NOBBD -
IMPRESSUM