REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Informatica'
disclosed a bug submitted by
b'jak0_'
b'Reflected Cross-Site Scripting/HTML Injection'
17 Dec 2021
b'Kubernetes'
disclosed a bug submitted by
b'codermak'
b'Google storage bucket takeover which is used to load JS file in dashboard.html in "github.com/kubernetes/release" which can lead to XSS'
16 Dec 2021
b'Showmax'
disclosed a bug submitted by
b'ibrahimatix_'
b'Race Condition Vulnerability when creating profiles'
16 Dec 2021
b'FetLife'
disclosed a bug submitted by
b'trieulieuf9'
b'Able to access private picture/video/writing when requesting for their JSON response'
16 Dec 2021
b'Kubernetes'
disclosed a bug submitted by
b'codermak'
b'Broken Link Takeover from kubernetes.io docs'
16 Dec 2021
b'Kubernetes'
disclosed a bug submitted by
b'codermak'
b'Broken Github Link Used in deployment docs of "github.com/kubernetes/kompose"'
16 Dec 2021
b'Reddit'
disclosed a bug submitted by
b'bombon'
b'Weak rate limit could lead to ATO due to weak password protection mechanisms'
15 Dec 2021
b'Reddit'
disclosed a bug submitted by
b'cracker922'
b'No rate limit on password reset leads to email enumeration at gateway-production.dubsmash.com '
15 Dec 2021
b'VK.com'
disclosed a bug submitted by
b'executor'
b' '
15 Dec 2021
b'Mail.ru'
disclosed a bug submitted by
b'seifelsallamy'
b'reflected xss in e.mail.ru'
15 Dec 2021
b'Aiven Ltd'
disclosed a bug submitted by
b'j0v'
b'Zero day path traversal vulnerability in Grafana 8.x allows unauthenticated arbitrary local file read'
14 Dec 2021
b'Proctorio'
disclosed a bug submitted by
b'sector7-nl'
b'Universal Cross-Site Scripting vulnerability'
14 Dec 2021
b'Reddit'
disclosed a bug submitted by
b'asce21'
b'[dubsmash] Username and password bruteforce'
13 Dec 2021
b'Reddit'
disclosed a bug submitted by
b'nexus2k'
b'com.reddit.frontpage vulernable to Task Hijacking (aka StrandHogg Attack)'
13 Dec 2021
b'Reddit'
disclosed a bug submitted by
b'sandeep_rj49'
b"[dubsmash] Long String in 'shoutout' Parameter Leading Internal server Error on Popular hastags , Community and User Profile"
13 Dec 2021
b'Reddit'
disclosed a bug submitted by
b'dreamispossible'
b'No Rate limit on change password leads to account takeover'
13 Dec 2021
b'Shipt'
disclosed a bug submitted by
b'shell_c0de'
b'Vulnerabilities in exported activity WebView'
13 Dec 2021
b'Judge.me '
disclosed a bug submitted by
b'tefa_'
b'Error Page Content Spoofing or Text Injection'
13 Dec 2021
b'Mail.ru'
disclosed a bug submitted by
b'mrirfan__07'
b' add class vulnerable Stored XSS'
12 Dec 2021
b'MTN Group'
disclosed a bug submitted by
b'0xelkomy'
b'RXSS - http://macademy.mtnonline.com'
11 Dec 2021
1
...
108
109
110
111
112
...
693
BY DENIS WERNER - @NOBBD -
IMPRESSUM