REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
55
b'ooooooo_q'
50
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Mars'
disclosed a bug submitted by
b'thpless'
b'Information Exposure due to enabled debug mode'
25 Nov 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'4xpl0r3r'
b'`std::process::Command` batch files argument escaping could be bypassed with trailing whitespace or periods'
22 Nov 2024
b'Mars'
disclosed a bug submitted by
b'blax17'
b'phpinfo() exposed on '
21 Nov 2024
b'Mars'
disclosed a bug submitted by
b'thpless'
b'phpinfo() exposed on '
21 Nov 2024
b'Mars'
disclosed a bug submitted by
b'cholo_'
b'Upload profile photo and Pets addition - IDOR'
21 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'RXSS on via q parameter'
21 Nov 2024
b'Nextcloud'
disclosed a bug submitted by
b'tuyenee'
b'External storage - global credentials returned to the client side in plaintext'
21 Nov 2024
b'Acronis'
disclosed a bug submitted by
b'mr-medi'
b'DOM Based Cookie Bomb in *.acronis.com via x-clickref GET Parameter'
21 Nov 2024
b'Mozilla'
disclosed a bug submitted by
b'bashbdeer'
b'csrftoken not unique to session or specific user and csrfmiddlewaretoken can be altered'
20 Nov 2024
b'Acronis'
disclosed a bug submitted by
b'tomblorg'
b'Reflected XSS in https://www.acronis.com/products/cyber-protect/trial/'
20 Nov 2024
b'Planet Labs'
disclosed a bug submitted by
b'y0usef'
b'Api data leak'
20 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'RXSS in via S parameter '
19 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'sensitive data-creds for database - private key'
19 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'CSRF in Delete Pet Function'
19 Nov 2024
b'Mars'
disclosed a bug submitted by
b'e5p3ctr0x96'
b'Reflected XSS on formaction parameter'
19 Nov 2024
b'AWS VDP'
disclosed a bug submitted by
b'zolaer9527'
b'A potential risk in the cloudFrontExtensionsConsole which can be used to privilege escalation.'
19 Nov 2024
b'HackerOne'
disclosed a bug submitted by
b'madara_'
b'Hackerone supports accounts organitation takeover'
19 Nov 2024
b'Cosmos'
disclosed a bug submitted by
b'l33thaxor'
b'Heap-Buffer-Overread in contains_whitespace when calling parser_validate after supplying a maliciously crafted buffer to parser_parse'
19 Nov 2024
b'Nextcloud'
disclosed a bug submitted by
b'cx75fa'
b'Share information of Tables app is not limited to affected users '
18 Nov 2024
b'Omise'
disclosed a bug submitted by
b'ndizon_'
b'Open redirect Via X-Forwarded-Host'
17 Nov 2024
1
2
3
4
...
716
BY DENIS WERNER - @NOBBD -
IMPRESSUM