REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'WePay'
disclosed a bug submitted by
b'dreamzz'
b'Broken Authentication \xe2\x80\x93 Session Token bug'
22 Jan 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'avlidienbrunn'
b'Make API calls on behalf of another user (CSRF protection bypass)'
22 Jan 2015
b'HackerOne'
disclosed a bug submitted by
b'd4d1a179c0f3'
b'"early preview" programs disclosure'
21 Jan 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'prashanthvarmadomma'
b'unvalid open authentication with facebook'
21 Jan 2015
b'Vimeo'
disclosed a bug submitted by
b'geekboy'
b'USER PRIVACY VIOLATED (PRIVATE DATA GETTING TRANSFER OVER INSECURE CHANNEL ) '
20 Jan 2015
wont-fix
b'PHP'
disclosed a bug submitted by
b'endeavor'
b'Free called on unitialized pointer in exif.c'
20 Jan 2015
b'PHP'
disclosed a bug submitted by
b'sesser'
b'Use after free vulnerability in unserialize()'
20 Jan 2015
b'Localize'
disclosed a bug submitted by
b'pouya'
b'PHP PDOException and Full Path Disclosure'
18 Jan 2015
b'Revert'
disclosed a bug submitted by
b'internetwache'
b'Missing SPF header on revert.io'
18 Jan 2015
b'QIWI'
disclosed a bug submitted by
b'fishumu'
b'Metadata in hosted files is disclosing Usernames, Printers, paths, admin guides. emails'
18 Jan 2015
wont-fix
b'Openfolio'
disclosed a bug submitted by
b'harshafriend4all'
b'xss in /browse/contacts/'
14 Jan 2015
b'Phabricator'
disclosed a bug submitted by
b'nullsub'
b'Phabricator Phame Blog Skins Local File Inclusion'
14 Jan 2015
b'Informatica'
disclosed a bug submitted by
b'dreamzz'
b'Missing SPF for informatica.com'
12 Jan 2015
wont-fix
b'Slack'
disclosed a bug submitted by
b'fransrosen'
b'Facebook Takeover using Slack using 302 from files.slack.com with access_token'
11 Jan 2015
b'Mail.Ru'
disclosed a bug submitted by
b'4lemon'
b'Stored XSS on http://top.mail.ru'
10 Jan 2015
b'Phabricator'
disclosed a bug submitted by
b'nullsub'
b'Phabricator Diffusion application allows unauthorized users to delete mirrors'
09 Jan 2015
b'Vimeo'
disclosed a bug submitted by
b'artem'
b'APIs for channels allow HTML entities that may cause XSS issue'
08 Jan 2015
b'The Internet'
disclosed a bug submitted by
b'isciurus'
b'libcurl: URL request injection'
08 Jan 2015
b'Twitter'
disclosed a bug submitted by
b'sappi'
b'No rate limiting on creating lists'
06 Jan 2015
wont-fix
b'Twitter'
disclosed a bug submitted by
b'batuhan'
b'Notifications can mark as read by CSRF'
03 Jan 2015
wont-fix
1
...
700
701
702
703
704
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
