REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'ooooooo_q'
49
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'HackerOne'
disclosed a bug submitted by
b'danlec'
b'CSP Bypass: Click handler for links with data-method="post" can cause authenticity_token to be sent off domain'
26 Feb 2015
b'Todoist'
disclosed a bug submitted by
b'cliffordtrigo'
b'Taking over a Business Account Admin'
26 Feb 2015
b'Todoist'
disclosed a bug submitted by
b'cliffordtrigo'
b'Remotely removing credit cards from business accounts!'
26 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'config'
b"User's DM won't deleted after logout from Twitter for iOS (com.atebits.xxx.application-state)"
25 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'homakov'
b'Redirect URL in /intent/ functionality is not properly escaped'
24 Feb 2015
b'Square'
disclosed a bug submitted by
b'mikkz'
b'XSS on bookfresh'
23 Feb 2015
b'Square'
disclosed a bug submitted by
b'avicoder'
b'HTTP Header revealing server information.'
23 Feb 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'batram'
b'XSS on any site that includes the moogaloop flash player | deprecated embed code '
22 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'simon90'
b'URGENT - SUBDOMAIN TAKEOVER ON TWITTER ACQ.'
21 Feb 2015
b'OkCupid'
disclosed a bug submitted by
b'bitquark'
b'Rosetta flash vulnerability in clientstats AJAX script'
20 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'avicoder'
b'Path disclosure in platform0.twitter.com'
20 Feb 2015
wont-fix
b'HackerOne'
disclosed a bug submitted by
b'anshuman_bh'
b'Insecure Direct Object Reference vulnerability'
20 Feb 2015
b'Square'
disclosed a bug submitted by
b'niyaax'
b'Redirect while opening link in new tabs'
19 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'wesecureapp'
b'HTML/XSS rendered in Android App of Crashlytics through fabric.io'
18 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'wesecureapp'
b'Flaw in login with twitter to steal Oauth tokens'
18 Feb 2015
b'Localize'
disclosed a bug submitted by
b'testalways'
b'PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.'
17 Feb 2015
b'Localize'
disclosed a bug submitted by
b'pulkit_pandey'
b'files likes of README.md is public'
17 Feb 2015
b'Vimeo'
disclosed a bug submitted by
b'harshafriend4all'
b'profile photo update bypass '
17 Feb 2015
b'itBit Exchange'
disclosed a bug submitted by
b'harshafriend4all'
b'weird bug ! ( missing validation on new email verfication ) '
14 Feb 2015
b'Vimeo'
disclosed a bug submitted by
b'harshafriend4all'
b'Buying ondemand videos that 0.1 and sometimes for free '
13 Feb 2015
1
...
671
672
673
674
675
...
711
BY DENIS WERNER - @NOBBD -
IMPRESSUM