REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Nextcloud'
disclosed a bug submitted by
b'lukasreschke'
b'Share tokens for public calendars disclosed (NC-SA-2017-011)'
06 Jun 2017
b'Mixmax'
disclosed a bug submitted by
b'sh3r1'
b'[compose.mixmax.com] Stored XSS on compose.mixmax.com in contact names.'
06 Jun 2017
b'concrete5'
disclosed a bug submitted by
b'cdl'
b'Password Reset link hijacking via Host Header Poisoning '
06 Jun 2017
b'General Motors'
disclosed a bug submitted by
b'mystech7'
b'Flash XSS on homepage fliptilescroller'
05 Jun 2017
b'General Motors'
disclosed a bug submitted by
b'mystech7'
b'Flash XSS on Buick_RotatingMasthead_JellyBeanSlider.swf'
05 Jun 2017
b'Perl (IBB)'
disclosed a bug submitted by
b'geeknik'
b'heap-buffer-overflow (READ of size 61) in Perl_re_intuit_start()'
05 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'akbar_kp'
b'Clickjacking docs.weblate.org'
05 Jun 2017
b'Nextcloud'
disclosed a bug submitted by
b'giligails'
b'Missing Rate Limiting protection leading to mass triggering of e-mails'
05 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'punkit'
b'Weblate- Banner Grabbing-Ngnix Server version'
05 Jun 2017
b'YouPorn'
disclosed a bug submitted by
b'prakharprasad'
b'Find whether a video has been favourited or not, for any user [via YouPorn Mobile API]'
04 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'abiral'
b'Old password can be new password'
03 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'abiral'
b'Missing restriction on string size'
03 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'inhibitor181'
b'CSRF - Changing the full name / adding a secondary email identity of an account via a GET request'
02 Jun 2017
b'Uber'
disclosed a bug submitted by
b'vijay_kumar'
b'phone number exposure for riders/drivers given email/uuid'
02 Jun 2017
b'Starbucks'
disclosed a bug submitted by
b'bughunterboy'
b"CSRF: add item to victim's cart automatically (starbucks.com - updatecart)"
02 Jun 2017
b'Cuvva'
disclosed a bug submitted by
b'techwerx'
b'Subdomain take over oh-no.cuvva.co and ohno.cuvva.co'
02 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'sahil-mk'
b'Captcha Bypass at Email Reset can lead to Spamming users.'
02 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'sp1d3rs'
b'Information Disclosure on demo.weblate.org'
02 Jun 2017
b'Cuvva'
disclosed a bug submitted by
b'introvertmac'
b'Missing rate-limits at endpoints'
02 Jun 2017
b'Weblate'
disclosed a bug submitted by
b'mrityunjoy-emu'
b'CSRF bypass ( Delate Source Translation From dictionaries ) in demo.weblate.org'
02 Jun 2017
1
...
500
501
502
503
504
...
694
BY DENIS WERNER - @NOBBD -
IMPRESSUM