REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
linkks
75
geeknik
75
sp1d3rs
66
jobert
60
jon_bottarini
48
ryat
47
netfuzzer
47
guido
45
bl4de
42
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
Yahoo!
disclosed a bug submitted by
smiegles
Cross-site scripting on the main page of flickr by tagging a user.
07 Mar 2014
The Internet
disclosed a bug submitted by
prosecco-inria
TLS Triple Handshake Attack
03 Mar 2014
HackerOne
disclosed a bug submitted by
guido
CSS leaks SCSS debug info
28 Feb 2014
Phabricator
disclosed a bug submitted by
dawidczagan
Improperly implemented password recovery link functionality
27 Feb 2014
Flash
disclosed a bug submitted by
clem1
Flash double free vulnerability leads to code execution
27 Feb 2014
Sandbox Escape
disclosed a bug submitted by
someone
OSX ATS arbitrary free issue may lead to App Sandbox bypass
26 Feb 2014
Sandbox Escape
disclosed a bug submitted by
someone
OSX ATS memory corruption may lead to App Sandbox bypass
26 Feb 2014
Phabricator
disclosed a bug submitted by
dawidczagan
Log in a user to another account
22 Feb 2014
HackerOne
disclosed a bug submitted by
dawidczagan
Switching the user to the attacker's account
20 Feb 2014
HackerOne
disclosed a bug submitted by
dawidczagan
Improper session management
19 Feb 2014
HackerOne
disclosed a bug submitted by
dawidczagan
Information disclosure (reset password token) and changing the user's password
19 Feb 2014
HackerOne
disclosed a bug submitted by
laceratus
Upload profile photo from URL
15 Feb 2014
HackerOne
disclosed a bug submitted by
szgru
DNS Misconfiguration
15 Feb 2014
Sandbox Escape
disclosed a bug submitted by
tyranid
.NET Type Traversal Vulnerability
11 Feb 2014
PHP
disclosed a bug submitted by
kubabrecka
PHP Heap Overflow Vulnerability in imagecrop()
06 Feb 2014
Sandbox Escape
disclosed a bug submitted by
pageexec
Linux 3.4+: arbitrary write with CONFIG_X86_X32
31 Jan 2014
HackerOne
disclosed a bug submitted by
gazly
Login page password-guessing attack
16 Jan 2014
wont-fix
Flash
disclosed a bug submitted by
masatokinugawa
Handling of jar: URIs bypasses AllowScriptAccess=never
14 Jan 2014
Sandbox Escape
disclosed a bug submitted by
datuzi
Win32k Window Handle Vulnerability (EoP)
14 Jan 2014
HackerOne
disclosed a bug submitted by
andrisatteka
CSRF login
13 Jan 2014
1
...
516
517
518
519
BY DENIS WERNER - @NOBBD -
IMPRESSUM