REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
58
b'ooooooo_q'
52
b'haxta4ok00'
49
b'jon_bottarini'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Shopify'
disclosed a bug submitted by
b'avlidienbrunn'
b'Subdomain takeover on s3.shopify.com'
27 Feb 2017
b'shopify-scripts'
disclosed a bug submitted by
b'ssarong'
b'Heap Buffer overflow in mrb_funcall_with_block'
27 Feb 2017
b'Zomato'
disclosed a bug submitted by
b'cydefenser'
b'test.zba.se is vulnerable to SSL POODLE '
27 Feb 2017
b'Ruby'
disclosed a bug submitted by
b'dataalchemist'
b'Writable RubyCi Amazon s3 bucket'
27 Feb 2017
b'Ruby'
disclosed a bug submitted by
b'rootredrain'
b"Ruby:HTTP Header injection in 'net/http'"
27 Feb 2017
b'Twitter'
disclosed a bug submitted by
b'zigoo0'
b'Remote Unrestricted file Creation/Deletion and Possible RCE.'
26 Feb 2017
b'GlobaLeaks'
disclosed a bug submitted by
b'edio'
b'GlobaLeaks is vulnerable to timing attacks.'
26 Feb 2017
b'LocalTapiola'
disclosed a bug submitted by
b'putsi'
b'CSRF allows attacker to delete item from customer\'s "Postilaatikko"'
25 Feb 2017
b'HackerOne'
disclosed a bug submitted by
b'devil13'
b'Websites opened from reports can change url of report page '
25 Feb 2017
b'HackerOne'
disclosed a bug submitted by
b'1lastbr3ath'
b"Report redaction doesn't apply to report title update activities"
25 Feb 2017
b'Starbucks'
disclosed a bug submitted by
b'toctou'
b'Time-based Blind SQLi on news.starbucks.com'
24 Feb 2017
b'HackerOne'
disclosed a bug submitted by
b'zombiehelp54'
b"Disclose any user's private email through API"
24 Feb 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'dineshdinz'
b'Application code is not obfuscated -- OWASP M9 (2016)'
24 Feb 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'implosion'
b'Bypass email validity in newsletter field'
24 Feb 2017
b'Ubiquiti Networks'
disclosed a bug submitted by
b's_p_q_r'
b'[scores.ubnt.com] DOM based XSS at form.html'
24 Feb 2017
b'Dovecot'
disclosed a bug submitted by
b'socialfox'
b'Information About Your System(Sensitive Directories)'
24 Feb 2017
b'Pornhub'
disclosed a bug submitted by
b'r0bbyz'
b'vulnerabilitie'
23 Feb 2017
b'Alvosec'
disclosed a bug submitted by
b'edio'
b'Alvocrypt uses a cryptographically insecure PRNG.'
23 Feb 2017
b'Nextcloud'
disclosed a bug submitted by
b'nickvergessen'
b'Group admin can remove user from all his groups via API'
23 Feb 2017
b'Zendesk'
disclosed a bug submitted by
b'abhijeth'
b'Missing function level access controls allowing attacker to abuse file access controls. Multiple vulnerabilities'
23 Feb 2017
1
...
565
566
567
568
569
...
726
BY DENIS WERNER - @NOBBD -
IMPRESSUM