REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'HackerOne'
disclosed a bug submitted by
b'abhisheksingh'
b'Hackerone impersonation'
02 Dec 2015
b'Twitter'
disclosed a bug submitted by
b'ericr'
b'Following a User After Favoriting Actually Follows Another User (related to #95243)'
02 Dec 2015
b'HackerOne'
disclosed a bug submitted by
b'smiegles'
b"profile cover can also load external URL's "
02 Dec 2015
b'HackerOne'
disclosed a bug submitted by
b'harshafriend4all'
b'Limited CSRF bypass.'
02 Dec 2015
b'HackerOne'
disclosed a bug submitted by
b'danlec'
b'Pre-generation of 2FA secret/backup codes seems like an unnecessary risk'
02 Dec 2015
b'Coinbase'
disclosed a bug submitted by
b'androm3da'
b'iframes considered harmful'
01 Dec 2015
b'Coinbase'
disclosed a bug submitted by
b'paresh_parmar'
b'OAUTH pemission set as true= lead to authorize malicious application'
01 Dec 2015
b'Mail.Ru'
disclosed a bug submitted by
b'bigbear_'
b'[api.allodsteam.com] Authentication Data'
01 Dec 2015
b'Shopify'
disclosed a bug submitted by
b'zombiehelp54'
b'CSV Excel Macro Injection Vulnerability in export list of current users - app.shopify.com'
01 Dec 2015
b'Shopify'
disclosed a bug submitted by
b'jurajk'
b'Cookie securing your "Opening soon" store is not secured against XSS'
01 Dec 2015
b'Vimeo'
disclosed a bug submitted by
b'esevece'
b'Stored XSS on vimeo.com and player.vimeo.com'
30 Nov 2015
b'itBit Exchange'
disclosed a bug submitted by
b'behroz'
b'user-agent Content spoofing'
28 Nov 2015
b'Romit'
disclosed a bug submitted by
b'crab'
b'No rate limit which leads to "Users information Disclosure" including verfification documents etc.'
27 Nov 2015
b'Romit'
disclosed a bug submitted by
b'crab'
b'GA code not verified on the server side allows sending Verification Documents on behalf of another user'
27 Nov 2015
b'Romit'
disclosed a bug submitted by
b'crab'
b'IDOR on remoing Share'
27 Nov 2015
b'Romit'
disclosed a bug submitted by
b'crab'
b'The csrf token remains same after user logs in'
26 Nov 2015
b'Romit'
disclosed a bug submitted by
b'crab'
b'Server responds with the server error logs on account creation'
26 Nov 2015
b'Romit'
disclosed a bug submitted by
b'crab'
b'HTML injection in email sent by romit.io'
26 Nov 2015
b'Romit'
disclosed a bug submitted by
b'crab'
b'Potential for financial loss, negative Values for "Buy fee" and "Sell Fee"'
26 Nov 2015
b'InVision'
disclosed a bug submitted by
b'psychomantis'
b'Reflective XSS in projects.invisionapp.com'
23 Nov 2015
1
...
622
623
624
625
626
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM