REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Gratipay'
disclosed a bug submitted by
b'thezawad'
b'prevent null bytes in email field'
13 Jul 2016
b'Gratipay'
disclosed a bug submitted by
b'jsshen'
b"don't serve hidden files from Nginx"
13 Jul 2016
b'New Relic'
disclosed a bug submitted by
b'daniyal_nasir'
b'No CSRF validation on Account Monitors in Synthetics Block'
12 Jul 2016
b'New Relic'
disclosed a bug submitted by
b'sarwarjahan'
b'Normal user can set "Job title" of other users by Direct Object Reference'
12 Jul 2016
b'Uber'
disclosed a bug submitted by
b'maluko'
b'Information regarding trips from other users'
12 Jul 2016
b'HackerOne'
disclosed a bug submitted by
b'gone'
b'Possible CSRF during joining report as participant '
12 Jul 2016
b'Keybase'
disclosed a bug submitted by
b'franjkovic'
b'Register multiple users using one invitation (race condition)'
11 Jul 2016
b'Twitter'
disclosed a bug submitted by
b'adeelimtiaz90'
b'XSS via Fabrico Account Name'
11 Jul 2016
b'Twitter'
disclosed a bug submitted by
b'paulos_'
b'[Critical] - Steal OAuth Tokens'
11 Jul 2016
b'Gratipay'
disclosed a bug submitted by
b'japongskie'
b'Information disclosure'
11 Jul 2016
b'Mail.Ru'
disclosed a bug submitted by
b'bobrov'
b'[connect.mail.ru] Memory Disclosure / IE XSS'
11 Jul 2016
b'Automattic'
disclosed a bug submitted by
b'cure53'
b'WordPress Flash XSS in *flashmediaelement.swf*'
10 Jul 2016
b'Automattic'
disclosed a bug submitted by
b'cure53'
b'WordPress SOME bug in plupload.flash.swf leading to RCE'
10 Jul 2016
b'ok.ru'
disclosed a bug submitted by
b'ashishdhaduk'
b'xss in group'
10 Jul 2016
b'Udemy'
disclosed a bug submitted by
b'zeyadk'
b'Ability to add pishing links in discusion ," Bypassing uneductional Links add "'
09 Jul 2016
b'IRCCloud'
disclosed a bug submitted by
b'rohitdua'
b'Cross Site Scripting(XSS) on IRCCloud Badges Page (using Parameter Pollution)'
08 Jul 2016
b'Uber'
disclosed a bug submitted by
b'skavans'
b'Stored self-XSS at m.uber.com'
08 Jul 2016
b'Paragon Initiative Enterprises'
disclosed a bug submitted by
b'velby'
b'Full Path Disclosure by removing CSRF token'
08 Jul 2016
b'Uber'
disclosed a bug submitted by
b'arjunsingh'
b'Header Injection '
08 Jul 2016
b'Uber'
disclosed a bug submitted by
b'arjunsingh'
b'Clickjacking in love.uber.com'
07 Jul 2016
1
...
584
585
586
587
588
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM