REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'ooooooo_q'
49
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Dropbox'
disclosed a bug submitted by
b'panchocosil'
b'WP User Enumeration is possible at https://blog.dropbox.com'
12 Feb 2015
wont-fix
b'Nearby Live'
disclosed a bug submitted by
b'm0rph3u5'
b'Group Invite not properly authenticated'
12 Feb 2015
b'Flash'
disclosed a bug submitted by
b'netfuzzer'
b'chrome allows POST requests with custom headers using flash + 307 redirect'
09 Feb 2015
b'Vimeo'
disclosed a bug submitted by
b'balag_py'
b'Misconfigured crossdomain.xml - vimeo.com'
09 Feb 2015
wont-fix
b'Twitter'
disclosed a bug submitted by
b'sappi'
b'Account Deleted without any confirmation'
05 Feb 2015
wont-fix
b'Square'
disclosed a bug submitted by
b'anshuman_bh'
b'CSRF on adding clients'
04 Feb 2015
b'Square'
disclosed a bug submitted by
b'anshuman_bh'
b'CSRF on adding a calendar event'
04 Feb 2015
b'HackerOne'
disclosed a bug submitted by
b'atom'
b'Improper way of validating a program'
04 Feb 2015
b'Python'
disclosed a bug submitted by
b'ewok'
b'Multiple Python interger overflows'
04 Feb 2015
b'Apache httpd'
disclosed a bug submitted by
b'guido'
b'mod_lua: Crash in websockets PING handling'
04 Feb 2015
b'HackerOne'
disclosed a bug submitted by
b'danlec'
b'Vulnerability with the way \\ escaped characters in <http://danlec.com> style links are rendered'
03 Feb 2015
b'Vimeo'
disclosed a bug submitted by
b'testalways'
b'Brute force on "vimeo" cookie'
02 Feb 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'shubham'
b'CSRF bypass'
30 Jan 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'testalways'
b'ftp upload of video allows naming that is not sanitized as the manual naming'
29 Jan 2015
b'Vimeo'
disclosed a bug submitted by
b'niyaax'
b'XSS on Vimeo'
29 Jan 2015
b'Coin.co'
disclosed a bug submitted by
b'koutrouss'
b'Report: Wordpress Bug!??? '
28 Jan 2015
wont-fix
b'PHP'
disclosed a bug submitted by
b'sparaschoudis'
b'heap buffer overflow in enchant_broker_request_dict()'
26 Jan 2015
b'Vimeo'
disclosed a bug submitted by
b'shamrocksu88'
b'Vimeo Search - XSS Vulnerability [http://vimeo.com/search]'
23 Jan 2015
b'WePay'
disclosed a bug submitted by
b'dreamzz'
b'Broken Authentication \xe2\x80\x93 Session Token bug'
22 Jan 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'avlidienbrunn'
b'Make API calls on behalf of another user (CSRF protection bypass)'
22 Jan 2015
1
...
672
673
674
675
676
...
711
BY DENIS WERNER - @NOBBD -
IMPRESSUM