REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
84
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Slack'
disclosed a bug submitted by
b'asdjsonyou'
b'Content spoofing at Stripe Integrations'
25 Aug 2014
b'WePay'
disclosed a bug submitted by
b'pranav_hivarekar'
b'Typical form vulnerable to csrf attack'
23 Aug 2014
b'HackerOne'
disclosed a bug submitted by
b'xtross'
b'Account Hijacking (Only rare case scenario)'
23 Aug 2014
wont-fix
b'OkCupid'
disclosed a bug submitted by
b'kenb'
b'XSS in 404 page of cdn.okccdn.com'
22 Aug 2014
b'Uzbey LLC'
disclosed a bug submitted by
b'darkh4x'
b'Missing "size check" on files to upload could make memory leaks.'
22 Aug 2014
b'Slack'
disclosed a bug submitted by
b'cliffordtrigo'
b'Deleting Teams implemenation'
21 Aug 2014
wont-fix
b'WePay'
disclosed a bug submitted by
b'mrrm'
b'oauth redirect uri validation bug leads to open redirect and account compromise'
21 Aug 2014
wont-fix
b'Mavenlink'
disclosed a bug submitted by
b'cliffordtrigo'
b'Clickjacking'
21 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'kenb'
b'XSS on Every sports.yahoo.com page'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'surgent10cross'
b'Comment Spoofing at http://suggestions.yahoo.com/detail/?prop=directory&fid=97721'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'surgent10cross'
b'CSRF Token missing on http://baseball.fantasysports.yahoo.com/b1/127146/messages'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'surgent10cross'
b'CSRF Token is missing on DELETE message option on http://baseball.fantasysports.yahoo.com/b1/127146/messages'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'internetwache'
b'Open Proxy, http://www.smushit.com/ysmush.it/, 4/09/14, #SpringClean'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'quistertow'
b'XSS in https://hk.user.auctions.yahoo.com'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'nahamsec'
b'readble .htaccess + Source Code Disclosure (+ .SVN repository)'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'cmaruti'
b'Infrastructure and Application Admin Interfaces (OWASP?CM?007)'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'cmaruti'
b'TESTING FOR REFLECTED CROSS SITE SCRIPTING (OWASP?DV?001)'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'cmaruti'
b'Testing for user enumeration (OWASP?AT?002) - https://gh.bouncer.login.yahoo.com'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'pytesus'
b'Multiple vulnerabilities'
20 Aug 2014
b'Yahoo!'
disclosed a bug submitted by
b'bobrov'
b'Open Redirect via Request-URI'
20 Aug 2014
1
...
675
676
677
678
679
...
703
BY DENIS WERNER - @NOBBD -
IMPRESSUM