REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
58
b'ooooooo_q'
52
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'General Motors'
disclosed a bug submitted by
b'koolacac'
b'XSS in GM '
30 Aug 2016
b'General Motors'
disclosed a bug submitted by
b'meals'
b'gmmovinparts.com SQLi via forgot_password.jsp'
30 Aug 2016
b'General Motors'
disclosed a bug submitted by
b'dipak_das'
b'refelected Xss on https://gmid.gm.com/gmid/jsp/GMIDInitialLogin.jsp'
30 Aug 2016
b'General Motors'
disclosed a bug submitted by
b'adrianomarcmont'
b'Content Spoof in webcaps.ecomm.gm.com'
30 Aug 2016
b'General Motors'
disclosed a bug submitted by
b'adrianomarcmont'
b'Reflected Cross Site Script in m.chevrolet.com.wpsegment5.gm.com'
30 Aug 2016
b'Dropbox'
disclosed a bug submitted by
b'agarri_fr'
b'SSRF allows access to internal services like Ganglia'
30 Aug 2016
b'Dropbox'
disclosed a bug submitted by
b'coder13'
b'XSS, Unvalidated redirects & phishing website hosting on dropbox servers'
30 Aug 2016
b'Dropbox'
disclosed a bug submitted by
b'maxon'
b'Can make any number of dropbox accounts with one email'
30 Aug 2016
b'Gratipay'
disclosed a bug submitted by
b'i1ackerone'
b'Reset Link Issue'
30 Aug 2016
b'Legal Robot'
disclosed a bug submitted by
b'muhaddimu'
b'Click Jacking'
29 Aug 2016
b'Legal Robot'
disclosed a bug submitted by
b'muhammadkhizerjaved'
b'UI Redressing ( ClickJacking ) Issue on Information submit form '
29 Aug 2016
b'ok.ru'
disclosed a bug submitted by
b'mthirup'
b'http://217.20.144.201 privilege escalation in apache tomcat SessionEample-script'
29 Aug 2016
b'Certly'
disclosed a bug submitted by
b'cjlegacion'
b'Business logic Failure - Browser cache management and logout vulnerability in Certly'
29 Aug 2016
b'Legal Robot'
disclosed a bug submitted by
b'punkit'
b'Clickjacking: X-Frame-Options header missing'
29 Aug 2016
b'Twitter'
disclosed a bug submitted by
b'secgeek'
b'Html Injection and Possible XSS in sms-be-vip.twitter.com'
28 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'cisplatin'
b'User enumeration possible from log-in timing difference'
27 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'cisplatin'
b'CSV Injection in sub_accounts.csv'
27 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'scorppy'
b'CSRF - Regenerate all admin api keys'
27 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'aiacobelli'
b'Server Side Browsing - localhost open port enumeration'
27 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'ashish_goanhacker'
b'No validation on account names'
27 Aug 2016
1
...
611
612
613
614
615
...
732
BY DENIS WERNER - @NOBBD -
IMPRESSUM