REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Pushwoosh'
disclosed a bug submitted by
b'falldi'
b'Clickjacking'
02 Feb 2017
b'WebSummit'
disclosed a bug submitted by
b'dhaval'
b'Full Sub Domain Takeover at s3.websummit.net'
02 Feb 2017
b'Coinbase'
disclosed a bug submitted by
b'japzdivino'
b'Requestor Email Disclosure via Email Notification'
02 Feb 2017
b'Informatica'
disclosed a bug submitted by
b'kasperkarlsson'
b'[marketplace.informatica.com] Persistent XSS through document title'
02 Feb 2017
b'Legal Robot'
disclosed a bug submitted by
b'pkkothawade'
b'SWEET32 TLS attack'
01 Feb 2017
b'Phabricator'
disclosed a bug submitted by
b'lucasveigaf'
b'User with only Viewing Privilege can send message to Room'
01 Feb 2017
b'shopify-scripts'
disclosed a bug submitted by
b'volc'
b'Memory disclosure in timegm'
31 Jan 2017
b'Vimeo'
disclosed a bug submitted by
b'panchocosil'
b'Securing "Reset password" pages from bots'
31 Jan 2017
b'shopify-scripts'
disclosed a bug submitted by
b'tunz'
b'Use After Free in str_replace'
31 Jan 2017
b'Pornhub'
disclosed a bug submitted by
b'cyber-guard'
b'Unsecured Kibana/Elasticsearch instance'
30 Jan 2017
b'WebSummit'
disclosed a bug submitted by
b'filedeletor1'
b'Subdomain Takeover at http://gameday.websummit.net'
30 Jan 2017
b'WebSummit'
disclosed a bug submitted by
b'glc'
b'Subdomain take over signup.websummit'
29 Jan 2017
b'LocalTapiola'
disclosed a bug submitted by
b'jimmyjohns'
b'SQL Injection on /webApp/sijoitustalousuk email-parameter + potential lack of CSRF Token (viestinta.lahitapiola.fi)'
28 Jan 2017
b'Imgur'
disclosed a bug submitted by
b'i1ackerone_'
b'Stored xss in ALBUM DESCRIPTION '
27 Jan 2017
b'Nextcloud'
disclosed a bug submitted by
b'rbcafe'
b'Wordpress 4.7.1'
27 Jan 2017
b'Open-Xchange'
disclosed a bug submitted by
b'lukasreschke'
b'Reflected Cross-Site Scripting due to vulnerable Flash component (Flashmediaelement.swf)'
27 Jan 2017
b'Starbucks'
disclosed a bug submitted by
b'cj862530'
b'Starbucks.com is reachable via ip address thus possible to link any doamin to Starbucks.'
26 Jan 2017
b'Starbucks'
disclosed a bug submitted by
b'meals'
b'Parameter Manipulation allowed for editing the shipping address for other user\xe2\x80\x99s teavana.com subscriptions.'
26 Jan 2017
b'itBit Exchange'
disclosed a bug submitted by
b'4lemon'
b'Round error issue -> produce money for free'
26 Jan 2017
b'Nextcloud'
disclosed a bug submitted by
b'khalidamin'
b'Email Spoofing'
25 Jan 2017
1
...
539
540
541
542
543
...
693
BY DENIS WERNER - @NOBBD -
IMPRESSUM