REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Eobot'
disclosed a bug submitted by
b'psych0tr1a'
b'Multiple information disclosure'
01 Dec 2014
wont-fix
b'Twitter'
disclosed a bug submitted by
b'siddiki'
b'Flaw in valid password policy.'
30 Nov 2014
wont-fix
b'Eobot'
disclosed a bug submitted by
b'masatokinugawa'
b'XSS in www.eobot.com(IE9 only)'
29 Nov 2014
b'Twitter'
disclosed a bug submitted by
b'mohdhaji87'
b'Broken authentication and invalidated email address leads to account takeover'
28 Nov 2014
wont-fix
b'Twitter'
disclosed a bug submitted by
b'anshuman_bh'
b'Creating Unauthorized Audience Lists'
28 Nov 2014
wont-fix
b'IRCCloud'
disclosed a bug submitted by
b'internetwache'
b'Weak password policy'
27 Nov 2014
wont-fix
b'Coinbase'
disclosed a bug submitted by
b'prakharprasad'
b'Coinbase Android Application - Bitcoin Wallet Leaks OAuth Response Code'
26 Nov 2014
b'99designs'
disclosed a bug submitted by
b'ashesh'
b'Source Code Disclosure (PHP)'
26 Nov 2014
b'Ruby on Rails'
disclosed a bug submitted by
b'nahamsec'
b'Arbitrary file existence disclosure in Action Pack'
20 Nov 2014
b'Factlink'
disclosed a bug submitted by
b'nahamsec'
b'File name/folder enumeration.'
18 Nov 2014
b'IRCCloud'
disclosed a bug submitted by
b'hari-cybex'
b'Password type input with auto-complete enabled'
17 Nov 2014
wont-fix
b'IRCCloud'
disclosed a bug submitted by
b'hari-cybex'
b'Missing Character Restriction'
17 Nov 2014
wont-fix
b'Twitter'
disclosed a bug submitted by
b'shahriyar'
b'Token remains alive ever after logging out!'
17 Nov 2014
wont-fix
b'The Internet'
disclosed a bug submitted by
b'mik'
b'rsync hash collisions may allow an attacker to corrupt or modify files'
17 Nov 2014
b'Secret'
disclosed a bug submitted by
b'vinothkumar'
b'Broken Authentication and Session Management'
17 Nov 2014
b'Square'
disclosed a bug submitted by
b'cliffordtrigo'
b'XSS [BookFresh]'
17 Nov 2014
b'ExpressionEngine'
disclosed a bug submitted by
b'deadlock'
b'Stored Cross-Site Scripting Vulnerability in /admin.php?/cp/admin_system/general_configuration'
17 Nov 2014
b'Square'
disclosed a bug submitted by
b'cliffordtrigo'
b'XSS in Client Past Activity '
17 Nov 2014
b'Square'
disclosed a bug submitted by
b'avlidienbrunn'
b'CRITICAL Account takeover via AngularJS template injection in connect.squareup.com'
17 Nov 2014
b'Twitter'
disclosed a bug submitted by
b'internetwache'
b'Full path disclosure at ads.twitter.com'
17 Nov 2014
1
...
659
660
661
662
663
...
694
BY DENIS WERNER - @NOBBD -
IMPRESSUM