REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
geeknik
79
linkks
75
jobert
69
sp1d3rs
68
someonenobbd
61
nyymi
53
jon_bottarini
49
haxta4ok00
48
netfuzzer
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
Gratipay
disclosed a bug submitted by
fallen
don't expose path of Python
13 May 2016
APITest.IO
disclosed a bug submitted by
mogli
Clickjacking: X-Frame-Options header missing
12 May 2016
LocalTapiola
disclosed a bug submitted by
konqi
Source Code Disclosure on out of scope domain viestinta.lahitapiola.fi
12 May 2016
LocalTapiola
disclosed a bug submitted by
maxy
Amazon Bucket Accessible (http://inpref.s3.amazonaws.com/)
12 May 2016
HackerOne
disclosed a bug submitted by
apok
Inadequate access controls in "Vote" functionality???
12 May 2016
Uber
disclosed a bug submitted by
rohk
Drivers can change profile picture
12 May 2016
Mail.Ru
disclosed a bug submitted by
cyberpunkych
Reflected XSS ?? games.mail.ru
12 May 2016
Uber
disclosed a bug submitted by
rohk
Mass Assignment Vulnerability in partners.uber.com
09 May 2016
Algolia
disclosed a bug submitted by
djamel-ghorab
text injection can be used in phishing 404 page should not include attacker text
09 May 2016
Uber
disclosed a bug submitted by
iad
XSS on love.uber.com
09 May 2016
Uber
disclosed a bug submitted by
e3xpl0it
Dom Based Xss
09 May 2016
Uber
disclosed a bug submitted by
blueberryinfosec
Session retention is present which reveals the customer info
09 May 2016
Uber
disclosed a bug submitted by
mdv
Reflected XSS via Unvalidated / Open Redirect in uber.com
09 May 2016
Uber
disclosed a bug submitted by
kirit1193
CRLF Injection in developer.uber.com
09 May 2016
Uber
disclosed a bug submitted by
ddworken
Stored XSS in archive.uber.com Due to Injection of Javascript:alert(0)
09 May 2016
Uber
disclosed a bug submitted by
ddworken
CrashPlan Backup is Vulnerable Allowing to a DoS Attack Against Uber's Backups to ```backup.uber.com```
09 May 2016
New Relic
disclosed a bug submitted by
mimieux
Stored Cross-Site Scripting via Angular Template Injection
09 May 2016
Uber
disclosed a bug submitted by
mdv
Reflected XSS via Livefyre Media Wall in newsroom.uber.com
09 May 2016
Dovecot
disclosed a bug submitted by
bdwhitehat
Cross-Site Scripting Vulnerability in dovecot.fi
09 May 2016
Dropbox
disclosed a bug submitted by
gone
Dropbox apps Server side request forgery
09 May 2016
1
...
567
568
569
570
571
...
658
BY DENIS WERNER - @NOBBD -
IMPRESSUM