REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Khan Academy'
disclosed a bug submitted by
b'a0xtrojan'
b'Leaked reused password for a few Khan Academy users'
12 Jul 2025
b'curl'
disclosed a bug submitted by
b'monkey_dee'
b'Default Minimum TLS Version Set to TLS v1.0 (Cryptographic Weakness)'
10 Jul 2025
b'curl'
disclosed a bug submitted by
b'brobagazzzx'
b'Use-After-Free in OpenSSL Keylog Callback via SSL_get_ex_data() in libcurl'
09 Jul 2025
b'curl'
disclosed a bug submitted by
b'mr_tufan'
b'Arbitrary File Read via file:// Protocol in cURL'
09 Jul 2025
b'TikTok'
disclosed a bug submitted by
b'eneri'
b'Chain Vulnerability lead to Full Control Group Live Accounts & Undeletable Creator'
08 Jul 2025
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'ReDoS in IPAddr'
08 Jul 2025
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'ReDoS in Psych'
08 Jul 2025
b'curl'
disclosed a bug submitted by
b'haydradz'
b'access notes without permission'
08 Jul 2025
b'curl'
disclosed a bug submitted by
b'haydradz'
b'Disclosure of email addresses'
08 Jul 2025
b'Sony'
disclosed a bug submitted by
b'trapedev'
b'Clear Authentication Deficiencies & Potential for Man-in-the-Middle Attacks'
08 Jul 2025
b'IBM'
disclosed a bug submitted by
b'devire'
b'Information disclosure identified on IBM endpoint. '
08 Jul 2025
b'Lichess'
disclosed a bug submitted by
b'psfauzi'
b'CSRF at Network feature'
08 Jul 2025
b'curl'
disclosed a bug submitted by
b'nyymi'
b'curl --continue-at confusion'
07 Jul 2025
b'curl'
disclosed a bug submitted by
b'haithamzakaria'
b'Information Disclosure at : https://curl.se/.mailmap'
07 Jul 2025
b'curl'
disclosed a bug submitted by
b'rono_07'
b'information disclosure '
07 Jul 2025
b'curl'
disclosed a bug submitted by
b'nyymi'
b'netrc crlf injection'
07 Jul 2025
b'curl'
disclosed a bug submitted by
b'mdakh404'
b'curl mishandles `%0c%0b` sequences in HTTP responses leading to CRLF confusions, Headers and Cookies Injection'
07 Jul 2025
b'curl'
disclosed a bug submitted by
b'aadityaathehacker'
b'Arbitrary File Deletion Vulnerability in curl Source Code via os.unlink()'
07 Jul 2025
b'curl'
disclosed a bug submitted by
b'spongebhav'
b'-H with space prefix leads to previous header injection when used with --proxy'
07 Jul 2025
1
2
3
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM