REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
84
b'linkks'
75
b'jobert'
70
b'nyymi'
64
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Lark Technologies'
disclosed a bug submitted by
b'shell_c0de'
b'[Lark Android] Vulnerability in exported activity WebView'
22 Jul 2021
b'Mail.ru'
disclosed a bug submitted by
b'alexeysergeevich'
b'[tanks.mail.ru] SSRF + cookie '
22 Jul 2021
b'Mail.ru'
disclosed a bug submitted by
b'sec_zone64'
b'Bypassing SOP with XSS on account.my.games leading to steal CSRF token and user information'
22 Jul 2021
b'Mail.ru'
disclosed a bug submitted by
b'01alsanosi'
b'Unauthorized Access To Admin panel'
22 Jul 2021
b'Khan Academy'
disclosed a bug submitted by
b'renganathan'
b'Enumerate all the class codes via google dorking '
22 Jul 2021
b'Uber'
disclosed a bug submitted by
b'penguinsaretasty'
b'pam_ussh does not properly validate the SSH certificate authority'
21 Jul 2021
b'curl'
disclosed a bug submitted by
b'thoger'
b'CVE-2021-22925: TELNET stack contents disclosure again'
21 Jul 2021
b'Bumble'
disclosed a bug submitted by
b'robertheaton'
b"Exfiltrating a victim's exact location (to within 5m)"
21 Jul 2021
b'Phabricator'
disclosed a bug submitted by
b'thund3r17'
b'Broken Authentication and Session Management lead to take over account'
21 Jul 2021
b'curl'
disclosed a bug submitted by
b'nyymi'
b'CVE-2021-22924: Bad connection reuse due to flawed path name checks'
21 Jul 2021
b'curl'
disclosed a bug submitted by
b'nyymi'
b'CVE-2021-22926: CURLOPT_SSLCERT mixup with Secure Transport'
21 Jul 2021
b'curl'
disclosed a bug submitted by
b'nyymi'
b'CVE-2021-22923: Metalink download sends credentials'
21 Jul 2021
b'curl'
disclosed a bug submitted by
b'nyymi'
b'CVE-2021-22922: Wrong content via metalink not discarded'
21 Jul 2021
b'Ian Dunn'
disclosed a bug submitted by
b'praalsanthpro'
b'Multiple server ssh usernames leaked in your github repository'
19 Jul 2021
b'GitLab'
disclosed a bug submitted by
b'tester12rtg'
b'Stored-XSS in merge requests'
19 Jul 2021
b'Acronis'
disclosed a bug submitted by
b'samincube'
b'Reflected XSS via "Error" parameter on https://admin.acronis.com/admin/su/'
19 Jul 2021
b'GitLab'
disclosed a bug submitted by
b'ooooooo_q'
b'Stored XSS in custom emoji'
19 Jul 2021
b'Ruby'
disclosed a bug submitted by
b'chinarulezzz'
b"OS Command Injection in '/lib/un.rb -- Utilities to replace common UNIX commands in Makefiles etc'"
19 Jul 2021
b'Basecamp'
disclosed a bug submitted by
b'alone_breecher'
b'Information Disclosure .htaccess accesible for public'
18 Jul 2021
b'Nextcloud'
disclosed a bug submitted by
b'wester0x01'
b'Leak arbitrary file under nextcloud android client privacy directory'
17 Jul 2021
1
...
185
186
187
188
189
...
742
BY DENIS WERNER - @NOBBD -
IMPRESSUM
