REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'ExpressionEngine'
disclosed a bug submitted by
b'charan'
b'Cross Site Scripting (Stored) '
30 Sep 2014
b'Twitter'
disclosed a bug submitted by
b'secgeek'
b'Delete Credit Cards from any Twitter Account in ads.twitter.com [New Vulnerability]'
30 Sep 2014
b'Uzbey LLC'
disclosed a bug submitted by
b'shahriyar'
b'Mass invitation send'
29 Sep 2014
wont-fix
b'CloudFlare'
disclosed a bug submitted by
b'sergeybelove'
b"User's data leak"
28 Sep 2014
b'Mail.Ru'
disclosed a bug submitted by
b'bigbear'
b'????????? ????? ??????? ?? ???? ??????????????? ??????? ? ???????? /home/berserk-online.com/public_html/forum/Themes/berserker/Profile.template.php'
27 Sep 2014
b'Twitter'
disclosed a bug submitted by
b'secanaly'
b'Stored xss'
27 Sep 2014
b'HackerOne'
disclosed a bug submitted by
b'christypriory'
b'Password Reset Bug'
25 Sep 2014
b'Coinbase'
disclosed a bug submitted by
b'michiel'
b'Bypassing 2FA for BTC transfers'
25 Sep 2014
b'HackerOne'
disclosed a bug submitted by
b'anand_m'
b'Change Any username and profile link in hackerone'
25 Sep 2014
b'C2FO'
disclosed a bug submitted by
b'faisalahmed'
b'All Active user sessions should be destroyed when user change his password!'
23 Sep 2014
b'Twitter'
disclosed a bug submitted by
b'vineet'
b'Captcha bypass with extension at http://www.mopub.com/about/contact/'
22 Sep 2014
wont-fix
b'Square'
disclosed a bug submitted by
b'pranav_hivarekar'
b'CSRF login'
21 Sep 2014
wont-fix
b'concrete5'
disclosed a bug submitted by
b'robin'
b'broken authentication'
21 Sep 2014
b'Phabricator'
disclosed a bug submitted by
b'shahmeer_amir'
b'Content Spoofing through URL'
20 Sep 2014
wont-fix
b'Mail.Ru'
disclosed a bug submitted by
b'vineet'
b'(m.mail.ru) Password type input with auto-complete enabled '
19 Sep 2014
wont-fix
b'Mavenlink'
disclosed a bug submitted by
b'vineet'
b'Clickjacking & CSRF attack can be done at https://app.mavenlink.com/login'
19 Sep 2014
b'Mavenlink'
disclosed a bug submitted by
b'vineet'
b'Clickjacking at https://www.mavenlink.com/ main website '
19 Sep 2014
b'Detectify'
disclosed a bug submitted by
b'mohdhaji87'
b'Password reset link not validated.'
19 Sep 2014
b'CloudFlare'
disclosed a bug submitted by
b'mohdhaji87'
b'User can request for password reset link without giving his website, eventhough he have it'
19 Sep 2014
wont-fix
b'CloudFlare'
disclosed a bug submitted by
b'jpsecurityresearch'
b'Apache mod_negotiation filename bruteforcing'
19 Sep 2014
wont-fix
1
...
677
678
679
680
681
...
708
BY DENIS WERNER - @NOBBD -
IMPRESSUM