REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
114
linkks
75
geeknik
72
sp1d3rs
63
jobert
57
netfuzzer
47
guido
45
bl4de
42
ryat
40
bigbear_
38
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
SEMrush
disclosed a bug submitted by
yassineaboukir
OAuth `redirect_uri` bypass using IDN homograph attack resulting in user's access token leakage
18 Jun 2020
Mail.ru
disclosed a bug submitted by
myasnikovalexey
Stored XSS on go.mail.ru
18 Jun 2020
Mail.ru
disclosed a bug submitted by
njgadhiya
Cross-Site Request Forgery (CSRF) in comment update - api.my.games
18 Jun 2020
Mail.ru
disclosed a bug submitted by
frankie_xote
Collected Telegraf Matrics Accessible
18 Jun 2020
h1-ctf
disclosed a bug submitted by
abdilahrf_
[H1-2006 2020] [Multiple Vulnerability] CTF Writeup - @abdilahrf_
18 Jun 2020
h1-ctf
disclosed a bug submitted by
zeroxyele
[H1-2006 2020] I successfully solved it!
18 Jun 2020
h1-ctf
disclosed a bug submitted by
meraxes
[h1-2006 2020] CTF Walkthrough
18 Jun 2020
h1-ctf
disclosed a bug submitted by
zer0ttl
[h1-2006 2020] Write up for H1-2006 CTF
18 Jun 2020
h1-ctf
disclosed a bug submitted by
akshansh
[H1-2006 2020] Connecting the dots to send hackers their Bug Bounty
18 Jun 2020
h1-ctf
disclosed a bug submitted by
batee5a
[H1-2006 2020] Flag for H1-CTF
18 Jun 2020
h1-ctf
disclosed a bug submitted by
njbooher
[H1-2006 2020] Writeup
18 Jun 2020
h1-ctf
disclosed a bug submitted by
0xfd
[H1-2006 2020] Bounty Pay CTF challenge
18 Jun 2020
h1-ctf
disclosed a bug submitted by
nukedx
[H1-2006 2020] Multiple vulnerabilities leading account takeover
17 Jun 2020
h1-ctf
disclosed a bug submitted by
sw33tlie
[H1-2006 2020] CTF Writeup!
17 Jun 2020
Open-Xchange
disclosed a bug submitted by
zhutyra
SSRF - Guard - Unchecked WKS servers
17 Jun 2020
Open-Xchange
disclosed a bug submitted by
zhutyra
SSRF - Guard - Unchecked HKP servers
17 Jun 2020
Open-Xchange
disclosed a bug submitted by
zhutyra
XSS - Guard - Insufficient escaping of User-IDs from PGP Keys
17 Jun 2020
Mail.ru
disclosed a bug submitted by
r0hack
Time-Based SQL injection at city-mobil.ru
17 Jun 2020
Razer
disclosed a bug submitted by
s3cr3tsdn
???? OS Command Injection at https://sea-web.gold.razer.com/lab/ws-lookup via IP parameter
17 Jun 2020
Starbucks
disclosed a bug submitted by
neweq
Default credentials for the temporary POC site alipoc.stg.starbucks.com.cn permitted WAF bypass and RCE
16 Jun 2020
1
...
7
8
9
10
11
...
447
BY DENIS WERNER - @NOBBD -
IMPRESSUM
