REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Veris'
disclosed a bug submitted by
b'sasi2103'
b'Password(s) can be found via login process.'
13 May 2016
b'Veris'
disclosed a bug submitted by
b'yaworsk'
b"Complete or Edit Another User's Profile"
13 May 2016
b'Gratipay'
disclosed a bug submitted by
b'trabajoduro'
b'Vulnerable to clickjacking'
13 May 2016
b'Veris'
disclosed a bug submitted by
b'bugs3ra'
b'Captcha Bypass enable login bruteforce'
13 May 2016
b'Veris'
disclosed a bug submitted by
b'eboda'
b'Stored XSS in member book'
13 May 2016
b'Veris'
disclosed a bug submitted by
b'ashish_goanhacker'
b'XSS in Asset name'
13 May 2016
b'New Relic'
disclosed a bug submitted by
b'ahsantahirat'
b'New Relic - Session Hijacking'
13 May 2016
b'Veris'
disclosed a bug submitted by
b'zuh4n'
b"Stored XSS on 'Badges' page"
13 May 2016
b'Gratipay'
disclosed a bug submitted by
b'fallen'
b"don't expose path of Python "
13 May 2016
b'APITest.IO'
disclosed a bug submitted by
b'mogli'
b'Clickjacking: X-Frame-Options header missing'
12 May 2016
b'LocalTapiola'
disclosed a bug submitted by
b'konqi'
b'Source Code Disclosure on out of scope domain viestinta.lahitapiola.fi'
12 May 2016
b'LocalTapiola'
disclosed a bug submitted by
b'maxy'
b'Amazon Bucket Accessible (http://inpref.s3.amazonaws.com/)'
12 May 2016
b'HackerOne'
disclosed a bug submitted by
b'apok'
b'Inadequate access controls in "Vote" functionality???'
12 May 2016
b'Uber'
disclosed a bug submitted by
b'rohk'
b'Drivers can change profile picture'
12 May 2016
b'Mail.Ru'
disclosed a bug submitted by
b'cyberpunkych'
b'Reflected XSS ?? games.mail.ru'
12 May 2016
b'Uber'
disclosed a bug submitted by
b'rohk'
b'Mass Assignment Vulnerability in partners.uber.com'
09 May 2016
b'Algolia'
disclosed a bug submitted by
b'djamel-ghorab'
b'text injection can be used in phishing 404 page should not include attacker text'
09 May 2016
b'Uber'
disclosed a bug submitted by
b'iad'
b'XSS on love.uber.com'
09 May 2016
b'Uber'
disclosed a bug submitted by
b'e3xpl0it'
b'Dom Based Xss'
09 May 2016
b'Uber'
disclosed a bug submitted by
b'blueberryinfosec'
b'Session retention is present which reveals the customer info'
09 May 2016
1
...
646
647
648
649
650
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
