REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
84
b'linkks'
75
b'jobert'
70
b'nyymi'
64
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Square'
disclosed a bug submitted by
b'avicoder'
b'HTTP Header revealing server information.'
23 Feb 2015
wont-fix
b'Vimeo'
disclosed a bug submitted by
b'batram'
b'XSS on any site that includes the moogaloop flash player | deprecated embed code '
22 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'simon90'
b'URGENT - SUBDOMAIN TAKEOVER ON TWITTER ACQ.'
21 Feb 2015
b'OkCupid'
disclosed a bug submitted by
b'bitquark'
b'Rosetta flash vulnerability in clientstats AJAX script'
20 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'avicoder'
b'Path disclosure in platform0.twitter.com'
20 Feb 2015
wont-fix
b'HackerOne'
disclosed a bug submitted by
b'anshuman_bh'
b'Insecure Direct Object Reference vulnerability'
20 Feb 2015
b'Square'
disclosed a bug submitted by
b'niyaax'
b'Redirect while opening link in new tabs'
19 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'wesecureapp'
b'HTML/XSS rendered in Android App of Crashlytics through fabric.io'
18 Feb 2015
b'Twitter'
disclosed a bug submitted by
b'wesecureapp'
b'Flaw in login with twitter to steal Oauth tokens'
18 Feb 2015
b'Localize'
disclosed a bug submitted by
b'testalways'
b'PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.'
17 Feb 2015
b'Localize'
disclosed a bug submitted by
b'pulkit_pandey'
b'files likes of README.md is public'
17 Feb 2015
b'Vimeo'
disclosed a bug submitted by
b'harshafriend4all'
b'profile photo update bypass '
17 Feb 2015
b'itBit Exchange'
disclosed a bug submitted by
b'harshafriend4all'
b'weird bug ! ( missing validation on new email verfication ) '
14 Feb 2015
b'Vimeo'
disclosed a bug submitted by
b'harshafriend4all'
b'Buying ondemand videos that 0.1 and sometimes for free '
13 Feb 2015
b'Dropbox'
disclosed a bug submitted by
b'panchocosil'
b'WP User Enumeration is possible at https://blog.dropbox.com'
12 Feb 2015
wont-fix
b'Nearby Live'
disclosed a bug submitted by
b'm0rph3u5'
b'Group Invite not properly authenticated'
12 Feb 2015
b'Flash'
disclosed a bug submitted by
b'netfuzzer'
b'chrome allows POST requests with custom headers using flash + 307 redirect'
09 Feb 2015
b'Vimeo'
disclosed a bug submitted by
b'balag_py'
b'Misconfigured crossdomain.xml - vimeo.com'
09 Feb 2015
wont-fix
b'Twitter'
disclosed a bug submitted by
b'sappi'
b'Account Deleted without any confirmation'
05 Feb 2015
wont-fix
b'Square'
disclosed a bug submitted by
b'anshuman_bh'
b'CSRF on adding clients'
04 Feb 2015
1
...
702
703
704
705
706
...
742
BY DENIS WERNER - @NOBBD -
IMPRESSUM
