REPORTS
PROGRAMS
PUBLISHERS
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Coinbase'
disclosed a bug submitted by
b'cablej'
b'Stored CSS Injection'
02 Apr 2018
b'Mail.Ru'
disclosed a bug submitted by
b'opnsec'
b'Same origin policy bypass on e.mail.ru via Cross-Site Flashing'
02 Apr 2018
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'Unintentional file creation caused at Tempfile with directory traversal'
01 Apr 2018
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'The possibility that unintended file operation may be performed because some methods of `Dir` do not check NULL characters.'
01 Apr 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'chalker'
b'`protobufjs` is vulnerable to ReDoS when parsing crafted invalid *.proto files'
31 Mar 2018
b'LocalTapiola'
disclosed a bug submitted by
b'mr_edwards'
b'Single user DOS on selectedLanuage -cookie at (verkkopalvelu.tapiola.fi)'
31 Mar 2018
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'Unix domain socket and a path containing a null character'
31 Mar 2018
b'Khan Academy'
disclosed a bug submitted by
b'ethanluismcdonough'
b'XSS through document projects'
30 Mar 2018
b'HackerOne'
disclosed a bug submitted by
b'blackni9ht'
b'Unicorn worker pool exhaustion by continuously updating payout preferences'
30 Mar 2018
b'Ruby'
disclosed a bug submitted by
b'aerodudrizzt'
b'controlled buffer under-read in pack_unpack_internal()'
30 Mar 2018
b'Zomato'
disclosed a bug submitted by
b'gerben_javado'
b'Blind XSS - Report review - Admin panel'
29 Mar 2018
b'Zomato'
disclosed a bug submitted by
b'gerben_javado'
b'[www.zomato.com] Privilege Escalation - /php/restaurant_menus_handler.php'
29 Mar 2018
b'Zomato'
disclosed a bug submitted by
b'gerben_javado'
b'[www.zomato.com] Privilege Escalation - Control reviews - /????dashboard_handler.php'
29 Mar 2018
b'Zomato'
disclosed a bug submitted by
b'gerben_javado'
b'[www.zomato.com] Boolean SQLi - /???????.php'
29 Mar 2018
b'Zomato'
disclosed a bug submitted by
b'gerben_javado'
b'[www.zomato.com] Boolean SQLi - /?????.php'
29 Mar 2018
b'Upserve '
disclosed a bug submitted by
b's3curityb3ast'
b'reports.breadcrumb.com is vulnerable for Arbitrary file existence disclosur CVE-2014-7829 '
29 Mar 2018
b'Brave Software'
disclosed a bug submitted by
b'skansing'
b'Download attribute allows downloading local files'
29 Mar 2018
b'HackerOne'
disclosed a bug submitted by
b'yaworsk'
b'Extra program metrics disclosed via /PROGRAM_NAME json response'
28 Mar 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'chalker'
b'`whereis` concatenates unsanitized input into exec() command'
28 Mar 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'bl4de'
b'[metascrapper] Stored XSS in Open Graph meta properties read by metascrapper'
28 Mar 2018
1
...
499
500
501
502
503
...
766
BY DENIS WERNER - @NOBBD -
IMPRESSUM
