REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'curl'
disclosed a bug submitted by
b'nyymi'
b'curl allows SSH connection even if host is not in known_hosts'
05 Feb 2025
b'Internet Bug Bounty'
disclosed a bug submitted by
b'mprogrammer'
b'CVE-2024-45230 - Potential denial-of-service in django.utils.html.urlize() (Another pattern)'
05 Feb 2025
b'IBM'
disclosed a bug submitted by
b'sweetheart1337_'
b'Weak credentials found in Jenkins endpoint'
05 Feb 2025
b'curl'
disclosed a bug submitted by
b'z2_'
b'CVE-2025-0725: gzip integer overflow'
05 Feb 2025
b'IBM'
disclosed a bug submitted by
b'youssifs7'
b'There is a POST based CSRF issue over IBM endpoint leading to modification of contact information. '
04 Feb 2025
b'Ruby on Rails'
disclosed a bug submitted by
b'ooooooo_q'
b'Action Text XSS (Rails 7.1.x)'
04 Feb 2025
b'Rockstar Games'
disclosed a bug submitted by
b'osama-hamad'
b'Open Redirection effects autodiscover.rockstargames.com'
03 Feb 2025
b'MTN Group'
disclosed a bug submitted by
b'aliyueka'
b'Improper Access Controls(Admin Path)'
31 Jan 2025
b'MTN Group'
disclosed a bug submitted by
b'aliyueka'
b'Broken Access Control(Horizontal Privilege Escalation).'
31 Jan 2025
b'MTN Group'
disclosed a bug submitted by
b'aliyueka'
b'Insecure direct Object Reference(Horizontal Escalation)'
31 Jan 2025
b'Yelp'
disclosed a bug submitted by
b'no-need'
b'Unauthorized Reservation Cancellation Through IDOR Vulnerability'
29 Jan 2025
b'Yelp'
disclosed a bug submitted by
b'vijaysimha-reddy'
b'Privilege Escalation - A Non Owner User Who Does not Have access to the user management can invite other users to the restaurant page'
29 Jan 2025
b'Adobe'
disclosed a bug submitted by
b'titanrain'
b'Registration Information Leakage '
29 Jan 2025
b'Cognizant'
disclosed a bug submitted by
b'hellicopter'
b'Disclosure of the valid Cognizant credentials at the Postman collection'
29 Jan 2025
b'Yelp'
disclosed a bug submitted by
b'vijaysimha-reddy'
b'Privilege Escalation - A Low Privilege User who does not have access to the user management module can remove the owner of the business account'
28 Jan 2025
b'Node.js'
disclosed a bug submitted by
b'taise'
b'Path traversal by drive name in Windows environment'
27 Jan 2025
b'TikTok'
disclosed a bug submitted by
b'datph4m'
b'Unauthorized Access to TikTok Account [Private Videos] via API Endpoint'
24 Jan 2025
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'0xrasputin'
b'Public google drive link Exposes Military Orders Containing PII (Name, SSN etc..) and Operational Details'
24 Jan 2025
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'hxhbrofessor'
b'Exposure of Private Personal Information to an Unauthorized Actor - PII and soldier data (mos, schools, and speciality training)'
24 Jan 2025
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'iamunixtz'
b'Boolen Based Blind Sql Injection Via User Agent in .mil'
24 Jan 2025
1
...
18
19
20
21
22
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
