REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
52
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Vimeo'
disclosed a bug submitted by
b'satishb3'
b"A user can post comments on other user's private videos"
11 Mar 2015
b'Slack'
disclosed a bug submitted by
b'atom'
b'Stored XSS in Slack.com'
09 Mar 2015
b'Vimeo'
disclosed a bug submitted by
b'dekeeu'
b'Vimeo.com - reflected xss vulnerability'
09 Mar 2015
b'Twitter'
disclosed a bug submitted by
b'satishb3'
b'fabric.io - app member can make himself an admin'
09 Mar 2015
b'Twitter'
disclosed a bug submitted by
b'satishb3'
b'Fabric.io - an app admin can delete team members from other user apps'
09 Mar 2015
b'Vimeo'
disclosed a bug submitted by
b'dekeeu'
b'player.vimeo.com - Reflected XSS Vulnerability'
09 Mar 2015
b'Twitter'
disclosed a bug submitted by
b'wesecureapp'
b'XSS in original referrer after follow'
09 Mar 2015
b'Phabricator'
disclosed a bug submitted by
b'haquaman'
b'Server Side Request Forgery in macro creation'
09 Mar 2015
wont-fix
b'InVision'
disclosed a bug submitted by
b'root_z3r0'
b'Password reset tokens is valid after changing the password by logging in the account'
08 Mar 2015
wont-fix
b'HackerOne'
disclosed a bug submitted by
b'srkgupta'
b'HTTPS is not enforced for objects stored by HackerOne on Amazon S3'
08 Mar 2015
b'Vimeo'
disclosed a bug submitted by
b'a7medel-ma7alawy'
b'Full account takeover via Add a New Email to account without email verified and without password confirmation.'
06 Mar 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'shahmeer_amir'
b'Poodle bleed vulnerability in cloud sub domain'
05 Mar 2015
b'Dropbox'
disclosed a bug submitted by
b'nishantagarwala'
b'Unvalidated Redirects and Stored XSS'
05 Mar 2015
wont-fix
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Stored XSS in Direct debit name'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Number, username and name disclosure'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Reflected xss in user name thru cookie'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Stored xss in user name'
04 Mar 2015
wont-fix
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Stored xss in user name (2) affected another user.'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Username and sim id enum'
04 Mar 2015
wont-fix
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Approve topup method by sender of this method'
04 Mar 2015
1
...
691
692
693
694
695
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM
