REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
geeknik
78
linkks
75
sp1d3rs
68
jobert
64
someonenobbd
58
jon_bottarini
49
haxta4ok00
48
netfuzzer
48
ryat
47
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
HackerOne
disclosed a bug submitted by
shahmeer_amir
Session Hijacking attack (Different Scenario)
17 Jul 2014
wont-fix
HackerOne
disclosed a bug submitted by
ashesh
No option to logout concurrent sessions
17 Jul 2014
wont-fix
InVision
disclosed a bug submitted by
niks
captcha missing
16 Jul 2014
Automattic
disclosed a bug submitted by
niks
information disclosure
16 Jul 2014
Mail.Ru
disclosed a bug submitted by
chandrakant
Clicjacking on Login panel
14 Jul 2014
Coin.co
disclosed a bug submitted by
robin
Host header is not Validated resulting in Redirect
14 Jul 2014
wont-fix
Apache httpd
disclosed a bug submitted by
gianko
moderate: mod_deflate denial of service
14 Jul 2014
Factlink
disclosed a bug submitted by
rockcena
Criptographic Issue: Strisct Transport Security with not good max age..(TOO SHORT!)
13 Jul 2014
FanFootage
disclosed a bug submitted by
jyoti
Same user name and uuid for multiple user names
13 Jul 2014
Coin.co
disclosed a bug submitted by
atom
OPTIONS method is enabled
13 Jul 2014
wont-fix
Coin.co
disclosed a bug submitted by
alias
Directory Listing
13 Jul 2014
Automattic
disclosed a bug submitted by
siddiki
Process of changing email address and password does not asks old Password.
11 Jul 2014
wont-fix
Mavenlink
disclosed a bug submitted by
siddiki
Password reset token not expiring
10 Jul 2014
Mail.Ru
disclosed a bug submitted by
reactors08
XSS in a file or folder name
09 Jul 2014
OkCupid
disclosed a bug submitted by
smiegles
http://www.helloquizzy.com/quizzy/createlist Cross-site scripting vulnerability
08 Jul 2014
OkCupid
disclosed a bug submitted by
jeet22
Xss high issue in www.okcupid.com main domain in users signup page
08 Jul 2014
Automattic
disclosed a bug submitted by
fortis_security
HTML form without CSRF protection
08 Jul 2014
wont-fix
Mail.Ru
disclosed a bug submitted by
chandrakant
Xss On http://my.mail.ru/
08 Jul 2014
StopTheHacker
disclosed a bug submitted by
quistertow
Information Disclosure (FPD) - stopthehacker.com
08 Jul 2014
CloudFlare
disclosed a bug submitted by
internetwache
Content spoofing /CSRF at https://www.cloudflare.com/ajax/modal-dialog.html
08 Jul 2014
1
...
568
569
570
571
572
...
590
BY DENIS WERNER - @NOBBD -
IMPRESSUM
