REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'HackerOne'
disclosed a bug submitted by
b'mikkocarreon'
b'Information leakage via CSV when content is valid JavaScript'
23 May 2017
b'Weblate'
disclosed a bug submitted by
b'mrr3boot'
b'CSP "script-src" includes "unsafe-inline" in weblate.org and demo.weblate.org'
23 May 2017
b'HackerOne'
disclosed a bug submitted by
b'jigarthakkar39'
b'Race condition leads to duplicate payouts'
23 May 2017
b'ownCloud'
disclosed a bug submitted by
b'lukasreschke'
b'HTML injection in Desktop Client'
23 May 2017
b'HackerOne'
disclosed a bug submitted by
b'sainaen'
b"A HackerOne employee's GitHub personal access token exposed in Travis CI build logs"
23 May 2017
b'HackerOne'
disclosed a bug submitted by
b'dhauenstein'
b'www.hackerone.com website CSP "script-src" includes "unsafe-inline"'
23 May 2017
b'HackerOne'
disclosed a bug submitted by
b'japzdivino'
b'Report invitation links not restricted to any existing user'
23 May 2017
b'HackerOne'
disclosed a bug submitted by
b'whhackersbr'
b"Changing Victim's JIRA Integration Settings Through Multiple Bugs"
23 May 2017
b'Quora'
disclosed a bug submitted by
b'panther'
b'self xss in'
22 May 2017
b'Twitter'
disclosed a bug submitted by
b'kedrisch'
b'[URGENT] Opportunity to publish tweets on any twitters account'
22 May 2017
b'Trello'
disclosed a bug submitted by
b'obi95'
b'api flaw'
22 May 2017
b'Shopify'
disclosed a bug submitted by
b'bored-engineer'
b'XSS in $shop$.myshopify.com/admin/ via "Button Objects" in malicious app'
22 May 2017
b'Cuvva'
disclosed a bug submitted by
b'd04k34d3v1l'
b'cuvva.com vulnerable to sweet32'
22 May 2017
b'Maximum'
disclosed a bug submitted by
b'kieran'
b'IDOR in editing courses'
22 May 2017
b'Starbucks'
disclosed a bug submitted by
b'joaomatosf'
b'Java Deserialization RCE via JBoss on card.starbucks.in'
22 May 2017
b'Weblate'
disclosed a bug submitted by
b'smit'
b'Missing filteration of meta characters in full name field on registration page https://demo.weblate.org/accounts/register'
22 May 2017
b'OWOX, Inc.'
disclosed a bug submitted by
b'abdelfattah_tcp'
b'ClickJacking'
22 May 2017
b'OWOX, Inc.'
disclosed a bug submitted by
b'ph_spade'
b'Direct IP Access'
22 May 2017
b'OWOX, Inc.'
disclosed a bug submitted by
b'yynl'
b"invalid URL parsing with and '@'"
22 May 2017
b'OWOX, Inc.'
disclosed a bug submitted by
b'yynl'
b'Subdomain Takeover on http://blog.owox.com/'
22 May 2017
1
...
503
504
505
506
507
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM