REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'IOVLabs'
disclosed a bug submitted by
b'teknogeek'
b'JSON RPC methods for debugging enabled by default allow DoS'
27 Feb 2023
b'Nextcloud'
disclosed a bug submitted by
b'ctulhu'
b'Messages can still be seen on conversation after expiring when cron is misconfigured'
27 Feb 2023
b'Stripe'
disclosed a bug submitted by
b'ian'
b'Fee discounts can be redeemed many times, resulting in unlimited fee-free transactions'
25 Feb 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'monnerat'
b'HTTP multi-header compression denial of service'
24 Feb 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'nyymi'
b'CVE-2023-23914: HSTS ignored on multiple requests'
24 Feb 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'nyymi'
b'CVE-2023-23915: HSTS amnesia with --parallel'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'mikeisastar'
b'[] Bug Reports allow for Unrestricted File Upload'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'carpc'
b'Install.php File Exposure on Drupal'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'0xd3adc0de'
b'[XSS] Reflected XSS via POST request'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'vv-m'
b'CORS Misconfiguration in https:///accounts/login/'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'raditzz'
b'DoS at (CVE-2018-6389)'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'0r10nh4ck'
b'Sensitive Data Exposure at https://'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'0r10nh4ck'
b'AWS Credentials Disclosure at '
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'0r10nh4ck'
b'Upload and delete files in debug page without access control.'
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'interc3pt3r'
b'Reflected XSS at '
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'hack3ron___1'
b'Authentication Bypass Using Default Credentials on '
24 Feb 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'syarifmsajjad'
b'Sensitive information disclosure [HtUS]'
24 Feb 2023
b'Automattic'
disclosed a bug submitted by
b'0xwega74'
b'Stored XSS on app.crowdsignal.com your-subdomain.crowdsignal.net via Thank You Header'
24 Feb 2023
b'Nextcloud'
disclosed a bug submitted by
b'rullzer'
b'Download permissions can be changed by resharer'
24 Feb 2023
b'HackerOne'
disclosed a bug submitted by
b'jobert'
b'Users querying dim_hacker_reports table through Analytics API can determine data from dim_reports table using WHERE or HAVING query'
22 Feb 2023
1
...
91
92
93
94
95
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
