REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Zomato'
disclosed a bug submitted by
b'mr__robot'
b'CSRF AT INVITING PEOPLE THOUGH PHONE NUMBER'
14 Sep 2016
b'GoCD'
disclosed a bug submitted by
b'mr__robot'
b'Directory Listening'
14 Sep 2016
b'Vimeo'
disclosed a bug submitted by
b'opnsec'
b'XSS in Subtitles of Vimeo Flash Player and Hubnut '
14 Sep 2016
b'Boozt Fashion AB'
disclosed a bug submitted by
b'hacking79'
b'XSS'
14 Sep 2016
b'OLX'
disclosed a bug submitted by
b'surajsp'
b'these are my old reports and still i have not receive any good replys, these all are Cross Site Scripting(XSS) issues: POC1: https://www.youtube.com/w'
14 Sep 2016
b'Coursera'
disclosed a bug submitted by
b'secalert'
b'XSS in https://www.coursera.org/courses/'
14 Sep 2016
b'Boozt Fashion AB'
disclosed a bug submitted by
b'zephrfish'
b'Instance of Apache Vulnerable to Several Issues'
14 Sep 2016
b'Bime'
disclosed a bug submitted by
b'agarri_fr'
b'SSRF in the Connector Designer (REST and Elastic Search)'
14 Sep 2016
b'Bime'
disclosed a bug submitted by
b'agarri_fr'
b'The JDBC driver used by the Vertica connector allows to create files on the backends'
14 Sep 2016
b'Bime'
disclosed a bug submitted by
b'agarri_fr'
b'XXE in the Connector Designer'
14 Sep 2016
b'Nextcloud'
disclosed a bug submitted by
b'spetr0x'
b'Unauthenticated Stored xss '
13 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'sameoldstory'
b"Fetch private list metadata and any user's personal name"
12 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'corb3nik'
b'Hyperlink Injection in Friend Invitation Emails'
12 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'cablej'
b'Missing rel=noreferrer tag allows link in list to change url of currently open tab'
12 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'mefkan'
b'Image Upload Path Disclosure'
12 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'cablej'
b'User Information sent to client through websockets'
12 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'cablej'
b'User Information leak allows user to bypass email verification.'
12 Sep 2016
b'Pornhub'
disclosed a bug submitted by
b'zephrfish'
b'[crossdomain.xml] Dangerous Flash Cross-Domain Policy'
12 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'cablej'
b'Race Condition in Redeeming Coupons'
12 Sep 2016
b'Instacart'
disclosed a bug submitted by
b'clarck-owen'
b'Host Header Injection/Redirection in: https://www.instacart.com/'
11 Sep 2016
1
...
613
614
615
616
617
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM