REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Shopify'
disclosed a bug submitted by
b'intidc'
b'[h1-2102] FQDN takeover on all Shopify wholesale customer domains by trailing dot (RFC 1034)'
25 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'r0hack'
b' Confluence Skype'
25 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'act1on3'
b'[webvpn.city-srv.ru] Path traversal via CVE-2020-3452'
25 Mar 2021
b'Rocket.Chat'
disclosed a bug submitted by
b'psych0tr1a'
b'Stored XSS in any message (leads to priv esc for all users and file leak + rce via electron app)'
25 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'pudsec'
b'Reflected XSS at https:////...'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'brbsainath'
b'Unauth RCE on Jenkins Instance at https:///'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'spongebhav'
b'CVE-2021-26855 on resulting in SSRF'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'spongebhav'
b'SSRF due to CVE-2021-26855 on '
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'i_am_no__one'
b'Misconfigured AWS S3 bucket leaks senstive data such of admin, Prdouction,beta, localhost and many more directories....'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'sleepnotf0und'
b'Self XSS + CSRF Leads to Reflected XSS in https:/// '
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'al-madjus'
b'Git repo on https://.mil/ discloses API password'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'nagli'
b'Blind Stored XSS Payload fired at the backend on https:///'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'lu3ky-13'
b'CSRF to Cross-site Scripting (XSS)'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'lu3ky-13'
b'CSRF to Cross-site Scripting (XSS)'
24 Mar 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'bughunterlabs'
b'[CVE-2018-7600] Remote Code Execution due to outdated Drupal server on www.'
24 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'jin0ne'
b'Bypass the reverse proxy. Request admin'
24 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'01alsanosi'
b' unauthorized Access To Elastic DB '
22 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'login-denied'
b'XSS via POST request to https://account.mail.ru/signup/'
20 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'sharmaz'
b'mail.ru/touch xss(r) debug parameter'
20 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'complex'
b'o2.mail.ru XSS'
20 Mar 2021
1
...
165
166
167
168
169
...
693
BY DENIS WERNER - @NOBBD -
IMPRESSUM