REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'GitHub Security Lab'
disclosed a bug submitted by
b'someonenobbd'
b'[Python]: Add Server-side Request Forgery sinks'
11 Apr 2022
b'MTN Group'
disclosed a bug submitted by
b'muhnad'
b'Insecure Storage of Sensitive Information on lonestarcell.com server'
09 Apr 2022
b'SecurityScorecard'
disclosed a bug submitted by
b'cryptoknight028'
b'HTML injection through Invite Teammate email'
09 Apr 2022
b'Nextcloud'
disclosed a bug submitted by
b'shakierbellows'
b'Folder architecture and Filesizes of private file drop shares can be getten'
09 Apr 2022
b'Kraden'
disclosed a bug submitted by
b'4bhin8v'
b"Found Origin IP's Lead To Access To kraden.com"
09 Apr 2022
b'Omise'
disclosed a bug submitted by
b'oblivionlight'
b'Host Header Injection leads to Open Redirect and Content Spoofing or Text Injection.'
09 Apr 2022
b'Uber'
disclosed a bug submitted by
b'boobalan123'
b'Exposed Golang Pprof debugger at https://cn-geo1.uber.com/'
07 Apr 2022
b'Uber'
disclosed a bug submitted by
b'hunt4p1zza'
b"Chain of IDORs Between U4B and Vouchers APIs Allows Attackers to View and Modify Program/Voucher Policies and to Obtain Organization Employees' PII"
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'saajanbhujel'
b'Reflected XSS on []'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'geeknik'
b'[www.] Path-based reflected Cross Site Scripting'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'splint3rsec'
b'[CVE-2020-3452] on '
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'ibrahimatix_'
b'username and password leaked via pptx for website'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'lubak'
b'Broken access control, can lead to legitimate user data loss'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'lubak'
b'Authorization bypass -> IDOR -> PII Leakage'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'mamunwhh'
b'Cross-site Scripting (XSS) - Reflected at https:///'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'lubak'
b'SQL Injection in '
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'homosec'
b"XSS on https:///' parameter"
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'homosec'
b'XSS on https:/// parameter'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'homosec'
b'XSS on https:/// via parameter'
07 Apr 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'homosec'
b'XSS on https:/// via parameter'
07 Apr 2022
1
...
91
92
93
94
95
...
693
BY DENIS WERNER - @NOBBD -
IMPRESSUM