REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'ooooooo_q'
49
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Coinbase'
disclosed a bug submitted by
b'bryanstern'
b'Coinbase Android Security Vulnerabilities'
07 May 2014
b'CloudFlare'
disclosed a bug submitted by
b'peterjaric'
b'Security issue with your "bag" script'
07 May 2014
b'InVision'
disclosed a bug submitted by
b'xss'
b'Found a Clickjacking in blog.invisionapp.com.'
04 May 2014
b'Slack'
disclosed a bug submitted by
b'prakharprasad'
b'Stored XSS in Slackbot Direct Messages'
04 May 2014
b'Coinbase'
disclosed a bug submitted by
b'mazen160'
b'Information Disclosure That shows the webroot of CoinBase Server'
04 May 2014
wont-fix
b'OkCupid'
disclosed a bug submitted by
b'smiegles'
b'Login destination open redirection'
01 May 2014
b'concrete5'
disclosed a bug submitted by
b'introvertmac'
b'Bypass auth.email-domains'
30 Apr 2014
b'Coinbase'
disclosed a bug submitted by
b'smilez_hapiez'
b' Cookie missing the HttpOnly flag '
30 Apr 2014
wont-fix
b'Coinbase'
disclosed a bug submitted by
b'smilez_hapiez'
b'IFRAME loaded from External Domains '
30 Apr 2014
wont-fix
b'OkCupid'
disclosed a bug submitted by
b'virii'
b'Reflected XSS on www.okcupid.com/signup '
30 Apr 2014
b'respondly'
disclosed a bug submitted by
b'atom'
b'OAuth Bug'
30 Apr 2014
b'HackerOne'
disclosed a bug submitted by
b'dawidczagan'
b'Flooding mailbox of user'
30 Apr 2014
wont-fix
b'Detectify'
disclosed a bug submitted by
b'shahmeer_amir'
b'No CSRF token on domain removal or addition'
30 Apr 2014
wont-fix
b'OkCupid'
disclosed a bug submitted by
b'hamihax'
b'XSS in okcupid.com by hamid'
29 Apr 2014
b'Yahoo!'
disclosed a bug submitted by
b'redshark1802'
b'Open redirect on tw.money.yahoo.com'
29 Apr 2014
b'Coinbase'
disclosed a bug submitted by
b'anshuman_bh'
b'Improper Validation of the Referrer header leading to Open URL Redirection'
29 Apr 2014
wont-fix
b'Detectify'
disclosed a bug submitted by
b'simon90'
b'SVN file disclosure on lazer.detectify.com'
29 Apr 2014
b'OkCupid'
disclosed a bug submitted by
b'rajuraju14'
b'okcupid.com vulnerable to Heartbleed attack'
28 Apr 2014
b'IRCCloud'
disclosed a bug submitted by
b'xss'
b'Login page password-guessing attack(Brute-force attack-High).'
26 Apr 2014
wont-fix
b'HackerOne'
disclosed a bug submitted by
b'leander'
b'Arbitrary file uploads to Amazon WS.'
26 Apr 2014
wont-fix
1
...
702
703
704
705
706
...
715
BY DENIS WERNER - @NOBBD -
IMPRESSUM
