REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'SecNews'
disclosed a bug submitted by
b'malcolmx'
b'Content spoofing due to the improper behavior of the not-found message '
09 Aug 2016
b'SecNews'
disclosed a bug submitted by
b'sameoldstory'
b'Querying private posts and changing post meta'
09 Aug 2016
b'Shopify'
disclosed a bug submitted by
b'vijay_kumar1110'
b'Delete/modify your own comment after limited access(IDOR)'
09 Aug 2016
b'Shopify'
disclosed a bug submitted by
b'vijay_kumar1110'
b'Staff member can delete Private Apps'
09 Aug 2016
b'SecNews'
disclosed a bug submitted by
b'marine'
b'Text injection on error page.'
09 Aug 2016
b'Shopify'
disclosed a bug submitted by
b'mico02'
b'Unauthorized access to Zookeeper on http://locutus-zk3.ec2.shopify.com:2181'
08 Aug 2016
b'Gratipay'
disclosed a bug submitted by
b'akanshaminti'
b'Cookie:HttpOnly Flag not set'
08 Aug 2016
b'Nextcloud'
disclosed a bug submitted by
b'ctee'
b'Bookmarks: Delete all existing bookmarks of a user'
08 Aug 2016
b'Mail.Ru'
disclosed a bug submitted by
b'konqi'
b'[opensource.mail.ru] system accounts enumeration'
08 Aug 2016
b'ExpressionEngine'
disclosed a bug submitted by
b'strukt'
b'Filename and directory enumeration'
08 Aug 2016
b'Uber'
disclosed a bug submitted by
b'raghav_bisht'
b'Blind OOB XXE At "http://ubermovement.com/"'
08 Aug 2016
b'Gratipay'
disclosed a bug submitted by
b'footstep'
b'Host Header Injection/Redirection Attack'
07 Aug 2016
b'Gratipay'
disclosed a bug submitted by
b'ahsantahir'
b'Content Spoofing/Text Injection '
07 Aug 2016
b'ExpressionEngine'
disclosed a bug submitted by
b'strukt'
b'Full path + some back-end code disclosure'
07 Aug 2016
b'WePay'
disclosed a bug submitted by
b'eboda'
b'Invited users can modify and/or remove account owner '
06 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'daniyal_nasir'
b'Vulnerable Link Leaks the User Names'
05 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'smil3'
b'All the active session should destroy when user change his password'
05 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'rahul_ch'
b'no email confirmation on signup'
05 Aug 2016
b'New Relic'
disclosed a bug submitted by
b'rahul_ch'
b'newrelic.com vulnerable to clickjacking !'
05 Aug 2016
b'Automattic'
disclosed a bug submitted by
b'jouko'
b'WordPress core stored XSS via attachment file name'
05 Aug 2016
1
...
623
624
625
626
627
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM