REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Harvest'
disclosed a bug submitted by
b'eboda'
b'Stored XSS on invoice, executing on any subdomain'
10 Sep 2016
b'Harvest'
disclosed a bug submitted by
b'eboda'
b'S3 bucket takeover due to proxy.harvestfiles.com'
10 Sep 2016
b'Boozt Fashion AB'
disclosed a bug submitted by
b'r4hul-ch'
b'No csrf protection on logout'
10 Sep 2016
b'Boozt Fashion AB'
disclosed a bug submitted by
b'm726a786'
b'User Enumeration. '
10 Sep 2016
b'Harvest'
disclosed a bug submitted by
b'0xamir'
b'Users enumeration is possible through cycling through recurring[client_id] argument value.'
10 Sep 2016
b'Mail.Ru'
disclosed a bug submitted by
b'ahsantahir'
b"[cfire.mail.ru] CSRF Bypassed - Changing anyone's 'User Info'"
09 Sep 2016
b'Veris'
disclosed a bug submitted by
b'xenon'
b'[XSS] sandbox.veris.in'
09 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'paramdham'
b'CSRF'
09 Sep 2016
b'Instacart'
disclosed a bug submitted by
b's44mux'
b'Stored XSS'
09 Sep 2016
b'Uber'
disclosed a bug submitted by
b'apara'
b'Bulk UUID enumeration via invite codes'
08 Sep 2016
b'Mapbox'
disclosed a bug submitted by
b'n0rb3r7'
b'target="_blank" Vulnerability Resulting in Critical Phishing Vector'
07 Sep 2016
b'Algolia'
disclosed a bug submitted by
b'rishi62'
b'Stored xss'
07 Sep 2016
b'Algolia'
disclosed a bug submitted by
b'ctee'
b'Stored XSS from Display Settings triggered on Save and viewing realtime search demo'
07 Sep 2016
b'Algolia'
disclosed a bug submitted by
b'ctee'
b'Stored XSS triggered by json key during UI generation'
07 Sep 2016
b'Algolia'
disclosed a bug submitted by
b'rajauzairabdullah'
b'No Rate Limit In Inviting Similar Contact Multiple Times'
07 Sep 2016
b'New Relic'
disclosed a bug submitted by
b'hassham'
b'Basic Authorization over HTTP'
07 Sep 2016
b'HackerOne'
disclosed a bug submitted by
b'abdullah'
b'Users contents on AWS is cacheable '
06 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'paramdham'
b'clickjacking'
06 Sep 2016
b'Legal Robot'
disclosed a bug submitted by
b'paramdham'
b'Registration bypass using OAuth logical bug'
06 Sep 2016
b'Shopify'
disclosed a bug submitted by
b'sacurifity'
b'Subdomain Takeover in http://genghis-cdn.shopify.io/ pointing to Fastly '
06 Sep 2016
1
...
614
615
616
617
618
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM