REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Mail.Ru'
disclosed a bug submitted by
b'hiddeneyes_pratikpanchal'
b'Vulnerability :- "XSS vulnerability"'
24 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'brakhane'
b'Some S3 Buckets are world readable (and one is world writeable)'
24 Oct 2015
b'InVision'
disclosed a bug submitted by
b'deepak_das'
b'Enumeration and Guessable Email (OWASP-AT-002)T hrough Login Form'
23 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'juhhga'
b'Unauthenticated access to details of hidden products in any shop via title emuneration'
23 Oct 2015
b'InVision'
disclosed a bug submitted by
b'protector_47'
b'CSRF Token in cookies!'
22 Oct 2015
b'Snapchat'
disclosed a bug submitted by
b'protector_47'
b'Vulnerable to JavaScript injection. (WXS) (Javascript injection)!'
22 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'dvl'
b'Paid account can review\\download any invoice of any other shop'
22 Oct 2015
b'Mail.Ru'
disclosed a bug submitted by
b'bigbear_'
b'[start.icq.com] Reflected XSS via Cookies'
21 Oct 2015
b'Mail.Ru'
disclosed a bug submitted by
b'bigbear_'
b'[riot.mail.ru] Reflected XSS in debug-mode'
21 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'reactors08'
b'www.shopify.com XSS on blog pages via sharing buttons'
21 Oct 2015
b'HackerOne'
disclosed a bug submitted by
b'rohan_x3'
b'Content spoofing on invitations page '
21 Oct 2015
b'HackerOne'
disclosed a bug submitted by
b'pranav_hivarekar'
b'Privileged information of a private/sandboxed program is leaked in json response to an unauthorized user'
21 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'pouya'
b'Unauthorized access to all collections, products, pages from other stores'
20 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'brakhane'
b'Arbitrary read on s3://shopify-delivery-app-storage/files'
20 Oct 2015
b'Zopim'
disclosed a bug submitted by
b'mdv'
b'Cross-site Scripting in all Zopim'
20 Oct 2015
b'Automattic'
disclosed a bug submitted by
b'blinkms'
b'XSS in WordPress '
16 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'pulkit_pandey'
b'amazon aws s3 bucket content is public :- http://shopify.com.s3.amazonaws.com/'
15 Oct 2015
b'Shopify'
disclosed a bug submitted by
b'brakhane'
b'Arbitrary write on s3://shopify-delivery-app-storage/files'
15 Oct 2015
b'PHP'
disclosed a bug submitted by
b'sparaschoudis'
b'AddressSanitizer reports a global buffer overflow in mkgmtime() function'
15 Oct 2015
b'PHP'
disclosed a bug submitted by
b'sparaschoudis'
b'Integer overflow in unserialize() (32-bits only)'
15 Oct 2015
1
...
626
627
628
629
630
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM