REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
geeknik
79
linkks
75
jobert
69
sp1d3rs
68
someonenobbd
61
nyymi
53
jon_bottarini
49
haxta4ok00
48
netfuzzer
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
Reddit
disclosed a bug submitted by
ardyanv1ckyramadhan
Broken links make users from France unable to understand the allowed content policy
18 May 2023
Reddit
disclosed a bug submitted by
prilcool
HTML injection in API response including request url
18 May 2023
Reddit
disclosed a bug submitted by
beksem35
read and message other user's messages
18 May 2023
Reddit
disclosed a bug submitted by
grayman0x1
oauth misconfigration lead to account takeover
18 May 2023
Reddit
disclosed a bug submitted by
grayman0x1
CVE-2020-11022
18 May 2023
Reddit
disclosed a bug submitted by
grayman0x1
Reflected XSS via File Upload
18 May 2023
Reddit
disclosed a bug submitted by
dvorakxl
[accounts.reddit.com] Redirect parameter allows for XSS
18 May 2023
Reddit
disclosed a bug submitted by
ghbjn
Huge amount of Subdomains Takeovers at Reddit.com
18 May 2023
Reddit
disclosed a bug submitted by
testnsh
No rate limit leads to spaming post
18 May 2023
HackerOne
disclosed a bug submitted by
alp
Program managers can see draft reports using Export Reports feature
18 May 2023
curl
disclosed a bug submitted by
kurohiro
CVE-2023-28321: IDN wildcard match
18 May 2023
curl
disclosed a bug submitted by
kurohiro
CVE-2023-28322: more POST-after-PUT confusion
18 May 2023
curl
disclosed a bug submitted by
nyymi
CVE-2023-28320: siglongjmp race condition
17 May 2023
Nextcloud
disclosed a bug submitted by
maxime_le-hericy
Users can set up workflows using restricted and invisible system tags
17 May 2023
LinkedIn
disclosed a bug submitted by
marvelmaniac
Anyone can view the results of linkedin skill test -if failed to earn a badge or if the badge earned is kept private: both cases results can be viewed
17 May 2023
Nextcloud
disclosed a bug submitted by
cryptographer
No rate limit while adding Additional emails feature
16 May 2023
Ruby
disclosed a bug submitted by
ooooooo_q
ReDoS in Time.rfc2822
16 May 2023
U.S. Dept Of Defense
disclosed a bug submitted by
nightm4re
Exposed GIT repo on [HtUS]
15 May 2023
U.S. Dept Of Defense
disclosed a bug submitted by
nightm4re
CSRF to delete accounts [HtUS]
15 May 2023
U.S. Dept Of Defense
disclosed a bug submitted by
colemanj
XSS in ServiceNow logout https://:443
15 May 2023
1
2
3
4
...
658
BY DENIS WERNER - @NOBBD -
IMPRESSUM