REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Eobot'
disclosed a bug submitted by
b'surgent10cross'
b'IDOR on https://www.eobot.com/paypal'
08 Dec 2014
wont-fix
b'Greenhouse.io'
disclosed a bug submitted by
b'ashesh'
b'SMTP protection not used (please read carefully )'
07 Dec 2014
wont-fix
b'InVision'
disclosed a bug submitted by
b'internetwache'
b'Backup of wordpress configuration file found. Leaking database users/passwords'
06 Dec 2014
b'Block.io'
disclosed a bug submitted by
b'ashesh'
b'SMPT Protection not used, I can hijack your email server.'
06 Dec 2014
b'Twitter'
disclosed a bug submitted by
b'avram'
b'DOM Cross-Site Scripting ( XSS )'
03 Dec 2014
b'Eobot'
disclosed a bug submitted by
b'psych0tr1a'
b'Multiple information disclosure'
01 Dec 2014
wont-fix
b'Twitter'
disclosed a bug submitted by
b'siddiki'
b'Flaw in valid password policy.'
30 Nov 2014
wont-fix
b'Eobot'
disclosed a bug submitted by
b'masatokinugawa'
b'XSS in www.eobot.com(IE9 only)'
29 Nov 2014
b'Twitter'
disclosed a bug submitted by
b'mohdhaji87'
b'Broken authentication and invalidated email address leads to account takeover'
28 Nov 2014
wont-fix
b'Twitter'
disclosed a bug submitted by
b'anshuman_bh'
b'Creating Unauthorized Audience Lists'
28 Nov 2014
wont-fix
b'IRCCloud'
disclosed a bug submitted by
b'internetwache'
b'Weak password policy'
27 Nov 2014
wont-fix
b'Coinbase'
disclosed a bug submitted by
b'prakharprasad'
b'Coinbase Android Application - Bitcoin Wallet Leaks OAuth Response Code'
26 Nov 2014
b'99designs'
disclosed a bug submitted by
b'ashesh'
b'Source Code Disclosure (PHP)'
26 Nov 2014
b'Ruby on Rails'
disclosed a bug submitted by
b'nahamsec'
b'Arbitrary file existence disclosure in Action Pack'
20 Nov 2014
b'Factlink'
disclosed a bug submitted by
b'nahamsec'
b'File name/folder enumeration.'
18 Nov 2014
b'IRCCloud'
disclosed a bug submitted by
b'hari-cybex'
b'Password type input with auto-complete enabled'
17 Nov 2014
wont-fix
b'IRCCloud'
disclosed a bug submitted by
b'hari-cybex'
b'Missing Character Restriction'
17 Nov 2014
wont-fix
b'Twitter'
disclosed a bug submitted by
b'shahriyar'
b'Token remains alive ever after logging out!'
17 Nov 2014
wont-fix
b'The Internet'
disclosed a bug submitted by
b'mik'
b'rsync hash collisions may allow an attacker to corrupt or modify files'
17 Nov 2014
b'Secret'
disclosed a bug submitted by
b'vinothkumar'
b'Broken Authentication and Session Management'
17 Nov 2014
1
...
673
674
675
676
677
...
708
BY DENIS WERNER - @NOBBD -
IMPRESSUM