REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Engel & V\xc3\xb6lkers Technology GmbH'
disclosed a bug submitted by
b'n0nce'
b'Improper authentication on phpmyadmin portal which is hosted in https://eventapp.engelvoelkers.com'
30 Jun 2021
b'Engel & V\xc3\xb6lkers Technology GmbH'
disclosed a bug submitted by
b'luisk2'
b'Information Exposure at https://printshop.engelvoelkers.com/'
30 Jun 2021
b'Engel & V\xc3\xb6lkers Technology GmbH'
disclosed a bug submitted by
b'djurado'
b'Publicly accessible .SVN repository allows downloading entire source code'
30 Jun 2021
b'Engel & V\xc3\xb6lkers Technology GmbH'
disclosed a bug submitted by
b'djurado'
b'SQL Injection at /displayPDF.php (printshop.engelvoelkers.com)'
30 Jun 2021
b'Rocket.Chat'
disclosed a bug submitted by
b'sonarsource'
b'Post-Auth Stored XSS with User Interaction leads to Remote Code Execution'
30 Jun 2021
b'Sifchain'
disclosed a bug submitted by
b'coptech77'
b'CORS misconfiguration'
29 Jun 2021
b'MyEtherWallet'
disclosed a bug submitted by
b'tushar_9905'
b'PIN bypass'
29 Jun 2021
b'Zenly'
disclosed a bug submitted by
b'sdushantha'
b'Google Maps API key stored as plain text leading to DOS and financial damage'
29 Jun 2021
b'Zivver'
disclosed a bug submitted by
b'njgadhiya'
b'Cross-Site Scripting thorough XSSJacking/PasteJacking Technique '
29 Jun 2021
b'QIWI'
disclosed a bug submitted by
b'alexeypetrenko'
b'Unauthenticated SSRF in jira.tochka.com leading to RCE in confluence.bank24.int'
29 Jun 2021
b'GitLab'
disclosed a bug submitted by
b'mzaheri'
b'Responsible Disclosure of Privacy Leakage Issue'
29 Jun 2021
b'New Relic'
disclosed a bug submitted by
b'dsdh'
b'Account Takeover via Email ID Change and Forgot Password Functionality'
28 Jun 2021
b'New Relic'
disclosed a bug submitted by
b'j0v'
b'Untrusted deserialization issue when loading newrelic.yml file in Java agent leads to code execution on host'
28 Jun 2021
b'Informatica'
disclosed a bug submitted by
b'k4b33r_'
b"F5 BIG-IP Cookie potentially reveal BigIP pool name, backend's IP address and port, routed domain."
28 Jun 2021
b'Unikrn'
disclosed a bug submitted by
b'stark303'
b'Open URL Redirection'
28 Jun 2021
b'Homebrew'
disclosed a bug submitted by
b'sai545'
b'clickjacking at brew.sh'
28 Jun 2021
b'Node.js third-party modules'
disclosed a bug submitted by
b'zerohex'
b'Server-side Template Injection in lodash.js '
28 Jun 2021
b'Node.js third-party modules'
disclosed a bug submitted by
b'cris_semmle'
b'Prototype Pollution Vulnerability in noble Package'
28 Jun 2021
b'Node.js third-party modules'
disclosed a bug submitted by
b'njgadhiya'
b'Bypass of SSRF Vulnerability'
28 Jun 2021
b'Urban Company'
disclosed a bug submitted by
b'nispat'
b'Exposed data of credit card details to hacker or attacker.'
28 Jun 2021
1
...
140
141
142
143
144
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM