REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'ImpressCMS'
disclosed a bug submitted by
b'egix'
b'Arbitrary File Deletion via Path Traversal in image-edit.php'
22 Mar 2022
b'ImpressCMS'
disclosed a bug submitted by
b'egix'
b'Potential Authentication Bypass through "autologin" feature'
22 Mar 2022
b'Internet Bug Bounty'
disclosed a bug submitted by
b'addisoncrump'
b'Regexes with large repetitions on empty sub-expressions take a very long time to parse'
22 Mar 2022
b'Omise'
disclosed a bug submitted by
b'sim4n6'
b"The endpoint '/test/webhooks' is vulnerable to DNS Rebinding"
22 Mar 2022
b'Omise'
disclosed a bug submitted by
b'sim4n6'
b'Race condition on action: Invite members to a team'
22 Mar 2022
b'Khan Academy'
disclosed a bug submitted by
b'sim4n6'
b'The endpoint /api/internal/graphql/requestAuthEmail on Khanacademy.or is vulnerable to Race Condition Attack.'
22 Mar 2022
b'Lyst'
disclosed a bug submitted by
b'deksterh1'
b'Web Cache poisoning attack leads to User information Disclosure and more'
22 Mar 2022
b'Lyst'
disclosed a bug submitted by
b'mandark'
b'[https:///]&&[https:///] Open Redirection'
22 Mar 2022
b'Mattermost'
disclosed a bug submitted by
b'rynexxx'
b'html injection via invite members can be leads account takeover '
22 Mar 2022
b'Adobe'
disclosed a bug submitted by
b'sheikhrishad0'
b'Log4j Java RCE in [beta.dev.adobeconnect.com]'
21 Mar 2022
b'GitLab'
disclosed a bug submitted by
b'vakzz'
b'Arbitrary file read via the bulk imports UploadsPipeline'
21 Mar 2022
b'Glassdoor'
disclosed a bug submitted by
b'safehacker_2715'
b'Get all personal email IDs of Glassdoor users[No user interaction required]'
21 Mar 2022
b'SecurityScorecard'
disclosed a bug submitted by
b'ww1'
b'RXSS '
20 Mar 2022
b'MTN Group'
disclosed a bug submitted by
b'xlife'
b'Insecure crossdomain.xml on https://vdc.mtnonline.com/'
20 Mar 2022
b'MTN Group'
disclosed a bug submitted by
b'xlife'
b'Exposed .bash_history at http://21days2017.mtncameroon.net/.bash_history'
20 Mar 2022
b'Yoti'
disclosed a bug submitted by
b'ww1'
b'PIN BYPASS '
18 Mar 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'unknownsh'
b'Military name,email,phone,address,certdata Disclosure '
18 Mar 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'pirneci'
b'CVE-2020-3452 on https:///'
18 Mar 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'pirneci'
b'Arbitrary File Deletion (CVE-2020-3187) on '
18 Mar 2022
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'ahmd_halabi'
b'CSRF - Modify User Settings with one click - Account TakeOver'
18 Mar 2022
1
...
96
97
98
99
100
...
694
BY DENIS WERNER - @NOBBD -
IMPRESSUM