REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Mail.ru'
disclosed a bug submitted by
b'lobity'
b' [city-mobil.ru/taxiserv/]'
05 Sep 2021
b'Acronis'
disclosed a bug submitted by
b'dj4ng0d2'
b'XSS Stored in Cacheable response'
05 Sep 2021
b'OpenMage'
disclosed a bug submitted by
b'thecyberjerry'
b'No Limit on Email Subscription'
04 Sep 2021
b'Uber'
disclosed a bug submitted by
b'batman9'
b'Google Maps API Key Leakage'
03 Sep 2021
b'Courier'
disclosed a bug submitted by
b'bugera'
b'Possible to invite any team member without being logged in. [ Session Management Issue ]'
03 Sep 2021
b'Upserve '
disclosed a bug submitted by
b'ctulhu'
b'Payment method token being sent to 3rd party analytics service'
03 Sep 2021
b'ownCloud'
disclosed a bug submitted by
b'pabl00nicarres'
b'Protocol Smuggling over LDAP password field'
03 Sep 2021
b'Snapchat'
disclosed a bug submitted by
b'korniltsev'
b'Improper Authentication - any user can login as other user with otp/logout & otp/login'
03 Sep 2021
b'GitHub Security Lab'
disclosed a bug submitted by
b'someonenobbd'
b'Java: Static initialization vector'
03 Sep 2021
b'U.S. General Services Administration'
disclosed a bug submitted by
b'rajeshpatil'
b'e-mail verification bypass through interception & modification of response status'
02 Sep 2021
b'Semrush'
disclosed a bug submitted by
b'a_d_a_m'
b'Improper input validation in projects leads to fully deny access to project resources'
01 Sep 2021
b'Elastic'
disclosed a bug submitted by
b'prateek_0490'
b'Critical || Unrestricted access to private Github repos and properties of Elastic through leaked token of Elastic employee'
01 Sep 2021
b'Logitech'
disclosed a bug submitted by
b'f_m'
b'session takeover via open protocol redirection on streamlabs.com'
01 Sep 2021
b'Affirm'
disclosed a bug submitted by
b'0xprial'
b'Subdomain takeover due to non registered TLD [ ...com ]'
31 Aug 2021
b'UPchieve'
disclosed a bug submitted by
b'elcayser-0x0a'
b'No Rate Limit On Reset Password'
31 Aug 2021
b'Nutanix'
disclosed a bug submitted by
b'blue_deja_vu'
b'Open Redirect at https://www.nutanix.com/tw/login via icid parameter'
31 Aug 2021
b'Acronis'
disclosed a bug submitted by
b'f_m'
b'IDOR on www.acronis.com API lead to steal private business user information'
31 Aug 2021
b'UPchieve'
disclosed a bug submitted by
b'elcayser-0x0a'
b'old session dose not expire after password change '
31 Aug 2021
b'UPchieve'
disclosed a bug submitted by
b'aaruthra'
b'Failed to validate Session after Password Change'
31 Aug 2021
b'Affirm'
disclosed a bug submitted by
b'litt1eb0y'
b'Open Redirect'
31 Aug 2021
1
...
126
127
128
129
130
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM