REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
58
b'ooooooo_q'
52
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'GitHub'
disclosed a bug submitted by
b'vaib25vicky'
b'Github app Privilege Escalation to Administrator/Owner of the Organization '
13 Jan 2023
b'Nextcloud'
disclosed a bug submitted by
b'systemkeeper'
b'Reference caching can leak data to unauthorized users'
13 Jan 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'zeyu2001'
b'DNS rebinding in --inspect (insufficient fix of CVE-2022-32212 affecting macOS devices)'
12 Jan 2023
b'Hiro'
disclosed a bug submitted by
b'bug_vs_me'
b'Security Issue into Wallet lock protection '
11 Jan 2023
b'Nextcloud'
disclosed a bug submitted by
b'lukasreschke'
b'CSRF vulnerability in Nextcloud Desktop Client 3.6.1 on Windows when clicking malicious link '
11 Jan 2023
b'Node.js'
disclosed a bug submitted by
b'algisec1337'
b'Take over subdomain undici.nodejs.org.cdn.cloudflare.net'
11 Jan 2023
b'Cloudflare Public Bug Bounty'
disclosed a bug submitted by
b'smither'
b'Origin IP address disclosure through Pingora response header'
10 Jan 2023
b'Acronis'
disclosed a bug submitted by
b'parshwa_21'
b'Cross Origin Resource Sharing Misconfiguration'
10 Jan 2023
b'TikTok'
disclosed a bug submitted by
b'lu3ky-13'
b'bypass two-factor authentication in Android apps and web'
09 Jan 2023
b'Nextcloud'
disclosed a bug submitted by
b'supr4s'
b'Possibility to delete files attached to deck cards of other users'
09 Jan 2023
b'Nextcloud'
disclosed a bug submitted by
b'error_2001'
b'Missing character limitation allows to put generate a database error'
09 Jan 2023
b'Nextcloud'
disclosed a bug submitted by
b'ctulhu'
b'Passcode bypass on Talk Android app'
09 Jan 2023
b'HackerOne'
disclosed a bug submitted by
b'zeyu2001'
b'Race condition in joining CTF group'
08 Jan 2023
b'curl'
disclosed a bug submitted by
b'nyymi'
b'curl file writing susceptible to symlink attacks'
07 Jan 2023
b'curl'
disclosed a bug submitted by
b'nyymi'
b' libssh backend CURLOPT_SSH_HOST_PUBLIC_KEY_SHA256 validation bypass'
07 Jan 2023
b'Nextcloud'
disclosed a bug submitted by
b'lukasreschkenc'
b'HEIC image preview can be used to invoke Imagick'
07 Jan 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'int_lulz'
b'IDOR when editing email leads to Mass Full ATOs (Account Takeovers) without user interaction on https:///'
06 Jan 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'f6x'
b'Reflected XSS'
06 Jan 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'maskedpersian'
b'stored cross site scripting in https://'
06 Jan 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'maskedpersian'
b'stored cross site scripting in https://'
06 Jan 2023
1
...
87
88
89
90
91
...
730
BY DENIS WERNER - @NOBBD -
IMPRESSUM
