REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
geeknik
79
linkks
75
sp1d3rs
68
jobert
66
someonenobbd
60
jon_bottarini
49
netfuzzer
48
haxta4ok00
48
ryat
47
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
Localize
disclosed a bug submitted by
ajaysinghnegi
Private Project Access Request Invitation Sent Via CSRF
21 Apr 2014
Localize
disclosed a bug submitted by
shahmeer_amir
No Wildcard DNS
21 Apr 2014
respondly
disclosed a bug submitted by
shahmeer_amir
Allowed method disclosure
21 Apr 2014
RelateIQ
disclosed a bug submitted by
shahmeer_amir
XSRF token problem
20 Apr 2014
RelateIQ
disclosed a bug submitted by
robin
Captcha Bypass With Extension
20 Apr 2014
HackerOne
disclosed a bug submitted by
siddiki
Securing sensitive pages from SearchBots
20 Apr 2014
The Internet
disclosed a bug submitted by
gianko
Uncontrolled Resource Consumption with XMPP-Layer Compression
20 Apr 2014
ReddAPI
disclosed a bug submitted by
smilez_hapiez
Session Fixation Found
20 Apr 2014
Minr.es
disclosed a bug submitted by
smilez_hapiez
Clickjacking: X-Frame-Options header missing
20 Apr 2014
Minr.es
disclosed a bug submitted by
smilez_hapiez
Session Cookie without Secure flag set
20 Apr 2014
wont-fix
Localize
disclosed a bug submitted by
daksh
Stored XSS
20 Apr 2014
Localize
disclosed a bug submitted by
smilez_hapiez
Login page password-guessing attack
20 Apr 2014
Localize
disclosed a bug submitted by
smilez_hapiez
Possible sensitive files
20 Apr 2014
Localize
disclosed a bug submitted by
daksh
Making groups in any project without permission
20 Apr 2014
Localize
disclosed a bug submitted by
daksh
Deleting groups in any project without permission
20 Apr 2014
HackerOne
disclosed a bug submitted by
javidhussain21
Session Management
19 Apr 2014
HackerOne
disclosed a bug submitted by
satishb3
Session not expired on logout
19 Apr 2014
HackerOne
disclosed a bug submitted by
mortes
Flawed account creation process allows registration of usernames corresponding to existing file names
19 Apr 2014
HackerOne
disclosed a bug submitted by
niks
A password reset page does not properly validate the authenticity token at the server side.
19 Apr 2014
HackerOne
disclosed a bug submitted by
wcypierre
Weird Bug - Ability to see partial of other user's notification
19 Apr 2014
1
...
618
619
620
621
622
...
628
BY DENIS WERNER - @NOBBD -
IMPRESSUM
