REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Gratipay'
disclosed a bug submitted by
b'n00b3rm4n'
b'proxy port 7000 and shell port 514 not filtered'
20 Feb 2016
b'Gratipay'
disclosed a bug submitted by
b'n00b3rm4n'
b'server calendar and server status available to public'
20 Feb 2016
b'HackerOne'
disclosed a bug submitted by
b'run'
b'Requesting unknown file type returns Ruby object w/ address'
19 Feb 2016
b'HackerOne'
disclosed a bug submitted by
b'aboukir'
b'User with Read-Only permissions can request/approve public disclosure'
19 Feb 2016
b'Automattic'
disclosed a bug submitted by
b'valievkarim'
b'XSS at www.woothemes.com'
19 Feb 2016
b'Slack'
disclosed a bug submitted by
b'kamil_hism'
b'Executing scripts on slack-files.com using SVG'
18 Feb 2016
b'Automattic'
disclosed a bug submitted by
b'valievkarim'
b'XSS at wordpress.com'
18 Feb 2016
b'Gratipay'
disclosed a bug submitted by
b'guyfromindia'
b'No Valid SPF Records.'
18 Feb 2016
b'Gratipay'
disclosed a bug submitted by
b'arbaz_hussain'
b'SPF/DKIM/DMARC for grtp.co'
18 Feb 2016
b'ok.ru'
disclosed a bug submitted by
b'alpha'
b'SSRF/XSPA ? ????? ???????? ????? ?? URL'
17 Feb 2016
b'ok.ru'
disclosed a bug submitted by
b'dipak_das'
b'Cross site scripting On api Calculator API requests'
17 Feb 2016
b'Shopify'
disclosed a bug submitted by
b'zombiehelp54'
b'Stored XSS in /admin/orders '
17 Feb 2016
b'Mail.Ru'
disclosed a bug submitted by
b'isenturk'
b'reflected in xss'
17 Feb 2016
b'Gratipay'
disclosed a bug submitted by
b'a0xnirudh'
b'HTTP trace method is enabled'
17 Feb 2016
b'Shopify'
disclosed a bug submitted by
b'mdv'
b'CSRF on https://shopify.com/plus'
17 Feb 2016
b'Twitter'
disclosed a bug submitted by
b'maxy'
b'Can see private tweets via keyword searches on tweetdeck'
16 Feb 2016
b'HackerOne'
disclosed a bug submitted by
b'zombiehelp54'
b'CSV Injection via the CSV export feature'
16 Feb 2016
b'HackerOne'
disclosed a bug submitted by
b'pisarenko'
b'attack in not an authorized user'
16 Feb 2016
b'Snapchat'
disclosed a bug submitted by
b'harry_mg'
b'Subdomain takeover in http://support.scan.me pointing to Zendesk (a Snapchat acquisition)'
16 Feb 2016
b'HackerOne'
disclosed a bug submitted by
b'charfe'
b'Private Program Disclosure in /:handle/reports/draft.json endpoint'
16 Feb 2016
1
...
614
615
616
617
618
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM