REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'InVision'
disclosed a bug submitted by
b'root_z3r0'
b'Password reset tokens is valid after changing the password by logging in the account'
08 Mar 2015
wont-fix
b'HackerOne'
disclosed a bug submitted by
b'srkgupta'
b'HTTPS is not enforced for objects stored by HackerOne on Amazon S3'
08 Mar 2015
b'Vimeo'
disclosed a bug submitted by
b'a7medel-ma7alawy'
b'Full account takeover via Add a New Email to account without email verified and without password confirmation.'
06 Mar 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'shahmeer_amir'
b'Poodle bleed vulnerability in cloud sub domain'
05 Mar 2015
b'Dropbox'
disclosed a bug submitted by
b'nishantagarwala'
b'Unvalidated Redirects and Stored XSS'
05 Mar 2015
wont-fix
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Stored XSS in Direct debit name'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Number, username and name disclosure'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Reflected xss in user name thru cookie'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Stored xss in user name'
04 Mar 2015
wont-fix
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Stored xss in user name (2) affected another user.'
04 Mar 2015
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Username and sim id enum'
04 Mar 2015
wont-fix
b'Mobile Vikings'
disclosed a bug submitted by
b'4lemon'
b'Approve topup method by sender of this method'
04 Mar 2015
b'PHP'
disclosed a bug submitted by
b'andreapalazzo'
b"SoapClient's __call() type confusion through unserialize()"
03 Mar 2015
b'Vimeo'
disclosed a bug submitted by
b'fin1te'
b'Ability to Download Music Tracks Without Paying (Missing permission check on`/musicstore/download`)'
01 Mar 2015
b'The Internet'
disclosed a bug submitted by
b'dirtybit'
b'Bad Write in TTF font parsing (win32k.sys)'
01 Mar 2015
b'Vimeo'
disclosed a bug submitted by
b'dotspoted'
b'Serious Vulnerability Found'
27 Feb 2015
wont-fix
b'itBit Exchange'
disclosed a bug submitted by
b'zoczus'
b'Notification Emails: IP + Content-Spoofing '
27 Feb 2015
b'itBit Exchange'
disclosed a bug submitted by
b'4lemon'
b'Unsecure data in "device" response - OTP'
27 Feb 2015
b'HackerOne'
disclosed a bug submitted by
b'siddiki'
b'Team member invitations to sandboxed teams are not invalidated consistently (v2)'
27 Feb 2015
b'PHP'
disclosed a bug submitted by
b'ryat'
b'Use after free vulnerability in unserialize() with DateTimeZone'
27 Feb 2015
1
...
692
693
694
695
696
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM