REPORTS
PROGRAMS
PUBLISHERS
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Coinbase'
disclosed a bug submitted by
b'ahmed_anwer_mohamed'
b'Application error message'
28 Nov 2016
b'Coinbase'
disclosed a bug submitted by
b'punkrock'
b'Window.opener bug at www.coinbase.com'
28 Nov 2016
b'Coinbase'
disclosed a bug submitted by
b'xorgin'
b'Information leakage on https://docs.gdax.com'
28 Nov 2016
b'Coinbase'
disclosed a bug submitted by
b'kaleemgiet'
b'ByPassing the email Validation Email on Sign up process in mobile apps'
28 Nov 2016
b'Informatica'
disclosed a bug submitted by
b'strukt'
b'[kb.informatica.com] Unauthenticated emails and HTML injection in email messages'
28 Nov 2016
b'Veris'
disclosed a bug submitted by
b'mr_sharma_'
b'Reflected Cross site scripting'
28 Nov 2016
b'Twitter'
disclosed a bug submitted by
b'bains'
b'XSS using javascript:alert(8007)'
28 Nov 2016
b'DigitalSellz'
disclosed a bug submitted by
b'sameoldstory'
b'Access to Amazon S3 bucket'
27 Nov 2016
b'DigitalSellz'
disclosed a bug submitted by
b'robin_linus'
b'Public profile is vulnerable to stored XSS / Facebook Token can be stolen'
27 Nov 2016
b'DigitalSellz'
disclosed a bug submitted by
b'skorov'
b'AWS Signature Disclosure in www.digitalsellz.com allows FULL access to Amazon S3'
27 Nov 2016
b'Ubiquiti Networks'
disclosed a bug submitted by
b'fransrosen'
b'Subdomain takeover on partners.ubnt.com due to non-used CloudFront DNS entry'
27 Nov 2016
b'Algolia'
disclosed a bug submitted by
b'eboda'
b'Unauthorized team members can leak information and see all API calls through /1/admin/* endpoints, even after they have been removed.'
27 Nov 2016
b'Harvest'
disclosed a bug submitted by
b'eboda'
b'XSS on expenses attachments'
27 Nov 2016
b'Ubiquiti Networks'
disclosed a bug submitted by
b'shubham'
b'Stored XSS in unifi.ubnt.com'
26 Nov 2016
b'Harvest'
disclosed a bug submitted by
b'bugdiscloseguys'
b'Editing a project (LIMITED)'
26 Nov 2016
b'ownCloud'
disclosed a bug submitted by
b'rhinosecuritylabs'
b'SMB User Authentication Bypass and Persistence'
26 Nov 2016
b'Nextcloud'
disclosed a bug submitted by
b'bm_666'
b'xss on demo.nextcloud.com due to outdated version'
26 Nov 2016
b'QIWI'
disclosed a bug submitted by
b'kxyry'
b'[qiwi.com] Oauth ?????? ????????'
26 Nov 2016
b'Snapchat'
disclosed a bug submitted by
b'marwan'
b'Bypassing "You\'ve requested your data the maximum number of times today." + "Please Verify an email address with snapchat to continue" '
25 Nov 2016
b'drchrono'
disclosed a bug submitted by
b'yaworsk'
b'Angular injection in the profile name of onpatient'
25 Nov 2016
1
...
629
630
631
632
633
...
770
BY DENIS WERNER - @NOBBD -
IMPRESSUM