REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Sifchain'
disclosed a bug submitted by
b'johnjhacking'
b'Exposed Openapi Token'
07 May 2021
b'Sifchain'
disclosed a bug submitted by
b'spyata'
b'Possibility of DoS attack at https://sifchain.finance// via CVE-2018-6389 exploitation'
07 May 2021
b'Ruby'
disclosed a bug submitted by
b'geeknik'
b'Code Injection Bug Report'
07 May 2021
b'Liberapay'
disclosed a bug submitted by
b'raven_in_matrix'
b"Disavowing an account doesn't disable it"
07 May 2021
b'U.S. General Services Administration'
disclosed a bug submitted by
b'skarsom'
b'TAMS registration details API for admins open at https://tamsapi.gsa.gov/user/tams/api/usermgmnt/pendingUserDetails/'
07 May 2021
b'Valve'
disclosed a bug submitted by
b'nyancat0131'
b'[CS:GO] Unchecked texture file name with TEXTUREFLAGS_DEPTHRENDERTARGET can lead to Remote Code Execution'
06 May 2021
b'Valve'
disclosed a bug submitted by
b'nyancat0131'
b'[Source Engine] Material path truncation leads to Remote Code Execution'
06 May 2021
b'Sifchain'
disclosed a bug submitted by
b'a-heybati'
b'xmlrpc.php And /wp-json/wp/v2/users FILE IS enable it will used for bruteforce attack and denial of service'
06 May 2021
b'Mail.ru'
disclosed a bug submitted by
b'b404c057ae68e03c3dc721d'
b'CVE-2020-3187 ip 91.231.115.30'
06 May 2021
b'Mail.ru'
disclosed a bug submitted by
b'jayesh25'
b'Improper Restriction of Excessive Authentication Attempts at https://top.mail.ru/edit? for site counter (Rate Limit bypass via IP Rotation)'
06 May 2021
b'Mail.ru'
disclosed a bug submitted by
b'jayesh25'
b'Clickjacking Vulnerability via https://profile.my.games/gamecenter/profile/ can lead to sensitive cross site actions (Bypass X-Frame-Options)'
06 May 2021
b'Mail.ru'
disclosed a bug submitted by
b'jayesh25'
b'Improper Restriction of Excessive Authentication Attempts at https://mirror.w1.dwar.ru/login.php'
06 May 2021
b'Moneybird'
disclosed a bug submitted by
b'0xprial'
b"Bypass of Rate limiting in secure_session endpoint's password input will lead to user password disclosure "
06 May 2021
b'HackerOne'
disclosed a bug submitted by
b'whhackersbr'
b'Editing Pentest Summary Report Answers After Submitting Them'
06 May 2021
b'HackerOne'
disclosed a bug submitted by
b'whhackersbr'
b'Changing the 2FA secret key and backup codes without knowing the 2FA OTP'
06 May 2021
b'Valve'
disclosed a bug submitted by
b'gamer7112'
b'Specially Crafted Closed Captions File can lead to Remote Code Execution in CS:GO and other Source Games'
05 May 2021
b'GitHub Security Lab'
disclosed a bug submitted by
b'ihsinme'
b'ihsinme: CPP Add query for CWE-691 Insufficient Control Flow Management When Using Bit Operations'
04 May 2021
b'GitHub Security Lab'
disclosed a bug submitted by
b'p0wn4j'
b'[Java] CWE-094: Query to detect Groovy Code Injections'
04 May 2021
b'GitHub Security Lab'
disclosed a bug submitted by
b'jessforfun'
b'Java: JSONP Injection'
04 May 2021
b'GitHub Security Lab'
disclosed a bug submitted by
b'artem'
b'[Java] Query for detecting Jakarta Expression Language injections'
04 May 2021
1
...
155
156
157
158
159
...
693
BY DENIS WERNER - @NOBBD -
IMPRESSUM