REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Python'
disclosed a bug submitted by
b'nedw'
b'Type confusion in partial.setstate, partial_repr, partial_call leads to memory corruption, reliable control flow hijack'
20 Sep 2016
b'New Relic'
disclosed a bug submitted by
b'pewpew'
b'Login Open Redirect'
19 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'cablej'
b'Brute force login and bypass locked account restrictions via iOS app'
19 Sep 2016
b'Shopify'
disclosed a bug submitted by
b'nismo'
b'XSS in SHOPIFY: Unsanitized Supplier Name can lead to XSS in Transfers Timeline'
19 Sep 2016
b'Shopify'
disclosed a bug submitted by
b'nismo'
b'Unsanitized Location Name in POS Channel can lead to XSS in Orders Timeline'
19 Sep 2016
b'Shopify'
disclosed a bug submitted by
b'ysx'
b'Access to Splunk via shard3-db2.ec2.shopify.com endpoint'
19 Sep 2016
b'OLX'
disclosed a bug submitted by
b'surajsp'
b'full path disclosure vulnerability at https://security.olx.com/*'
19 Sep 2016
b'Boozt Fashion AB'
disclosed a bug submitted by
b'0x00iam_hack3r'
b'Http header injection'
19 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'paramdham'
b'No valid SPF record'
19 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'paramdham'
b' Rate limiting on Email confirmation link'
19 Sep 2016
b'Uber'
disclosed a bug submitted by
b'dups'
b'Attacker could setup reminder remotely using brute force'
19 Sep 2016
b'Boozt Fashion AB'
disclosed a bug submitted by
b'yassineaboukir'
b'Host header poisoning leads to account password reset links hijacking'
17 Sep 2016
b'OLX'
disclosed a bug submitted by
b'nayranama'
b'Full Account Takeover '
17 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'tbmnull'
b"shopper login_code's can be brute forced"
17 Sep 2016
b'Udemy'
disclosed a bug submitted by
b'w3b7ricks73r'
b'NON VALIDATION OF SESSIONS AFTER PASSWORD CHANGE'
16 Sep 2016
b'Mail.Ru'
disclosed a bug submitted by
b'konqi'
b'[tidaltrek.mail.ru] SQL Injection'
16 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'paramdham'
b'- Guessing registered users in legalrobot.com'
16 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'paramdham'
b' Rate limiting on password reset links '
16 Sep 2016
b'Uber'
disclosed a bug submitted by
b'gopinath6'
b'User regisrtration money wallet link issue'
16 Sep 2016
b'Uber'
disclosed a bug submitted by
b'temmyscript'
b'Changing paymentProfileUuid when booking a trip allows free rides'
15 Sep 2016
1
...
566
567
568
569
570
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM