REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'HackerOne'
disclosed a bug submitted by
b'mrmax4o4'
b"Banned user still has access to their deleted account via HackerOne's API using their API key"
14 Jul 2025
b'curl'
disclosed a bug submitted by
b'tryhackplanet'
b'Disk Space Exhaustion leading to a Denial of Service (DoS)'
14 Jul 2025
b'WakaTime'
disclosed a bug submitted by
b'ctrl_cipher'
b'Not a Vuln: Race Condition Allows Creation of Multiple Organizations with the Same Name'
14 Jul 2025
b'curl'
disclosed a bug submitted by
b'tryhackplanet'
b'Uncontrolled File Write/Arbitrary File Creation '
13 Jul 2025
b'MainWP'
disclosed a bug submitted by
b'rishail01'
b'Reflected XSS in "Client Notes" Field'
13 Jul 2025
b'curl'
disclosed a bug submitted by
b'youssef111'
b'HTTP Request Smuggling Vulnerability Analysis - cURL Security Report'
13 Jul 2025
b'Khan Academy'
disclosed a bug submitted by
b'a0xtrojan'
b'Leaked reused password for a few Khan Academy users'
12 Jul 2025
b'curl'
disclosed a bug submitted by
b'monkey_dee'
b'Default Minimum TLS Version Set to TLS v1.0 (Cryptographic Weakness)'
10 Jul 2025
b'curl'
disclosed a bug submitted by
b'brobagazzzx'
b'Use-After-Free in OpenSSL Keylog Callback via SSL_get_ex_data() in libcurl'
09 Jul 2025
b'curl'
disclosed a bug submitted by
b'mr_tufan'
b'Arbitrary File Read via file:// Protocol in cURL'
09 Jul 2025
b'TikTok'
disclosed a bug submitted by
b'eneri'
b'Chain Vulnerability lead to Full Control Group Live Accounts & Undeletable Creator'
08 Jul 2025
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'ReDoS in IPAddr'
08 Jul 2025
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'ReDoS in Psych'
08 Jul 2025
b'curl'
disclosed a bug submitted by
b'haydradz'
b'access notes without permission'
08 Jul 2025
b'curl'
disclosed a bug submitted by
b'haydradz'
b'Disclosure of email addresses'
08 Jul 2025
b'Sony'
disclosed a bug submitted by
b'trapedev'
b'Clear Authentication Deficiencies & Potential for Man-in-the-Middle Attacks'
08 Jul 2025
b'IBM'
disclosed a bug submitted by
b'devire'
b'Information disclosure identified on IBM endpoint. '
08 Jul 2025
b'Lichess'
disclosed a bug submitted by
b'psfauzi'
b'CSRF at Network feature'
08 Jul 2025
b'curl'
disclosed a bug submitted by
b'nyymi'
b'curl --continue-at confusion'
07 Jul 2025
1
2
3
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM