REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Ruby on Rails'
disclosed a bug submitted by
b'komang4130'
b'HTTP Host injection in redirect_to function'
15 Jun 2021
b'Ruby on Rails'
disclosed a bug submitted by
b'ooooooo_q'
b'Regex Injection from request header (Rack::Sendfile, send_file)'
15 Jun 2021
b'UPchieve'
disclosed a bug submitted by
b'n1had'
b'Cross-origin resource sharing misconfig | steal user information '
15 Jun 2021
b'Node.js'
disclosed a bug submitted by
b'sickcodes'
b'Unexpected input validation of octal literals in nodejs v15.12.0 and below returns defined values for all undefined octal literals.'
14 Jun 2021
b'MTN Group'
disclosed a bug submitted by
b'tandav'
b'XMLRPC, Enabling XPSA and Bruteforce and DOS + A file disclosing installer-logs.'
14 Jun 2021
b'Sifchain'
disclosed a bug submitted by
b'ibrahimauwal1'
b'Wrong implementation of Telegram link on the main page for PC users'
12 Jun 2021
b'Sifchain'
disclosed a bug submitted by
b'beebeek'
b'Flaws In Social media Icon on error page which can lead to financial loss to a company.'
12 Jun 2021
b'HackerOne'
disclosed a bug submitted by
b'hacker_ani3s'
b'Hackerone is not properly deleting user id'
11 Jun 2021
b'Acronis'
disclosed a bug submitted by
b'mmg'
b'SQL injection in https://www.acronis.cz/ via the log parameter'
11 Jun 2021
b'Sifchain'
disclosed a bug submitted by
b'emptymahbob'
b'CORS Misconfiguration Leads to Sensitive Exposure on Sifchain main domain'
10 Jun 2021
b'Sifchain'
disclosed a bug submitted by
b'ic4'
b'CORS (Cross-Origin Resource Sharing) origin validation failure -Any website can issue requests made with user credentials and read the responses to th'
10 Jun 2021
b'Sifchain'
disclosed a bug submitted by
b'za_sec'
b'Private eth key found'
10 Jun 2021
b'Sifchain'
disclosed a bug submitted by
b'zelzal'
b'HTTPS not enforced at dex.sifchain.finance'
10 Jun 2021
b'Nextcloud'
disclosed a bug submitted by
b'rtod'
b'File drop public link can also be converted to federated share'
10 Jun 2021
b'Nextcloud'
disclosed a bug submitted by
b'rtod'
b'Attacker can obtain write access to any federated share/public link'
10 Jun 2021
b'Nextcloud'
disclosed a bug submitted by
b'rtod'
b'Default settings leak federated cloud id to lookup server of all users'
10 Jun 2021
b'Acronis'
disclosed a bug submitted by
b'sbakhour'
b'Stored XSS in Acronis Cyber Protect Console'
10 Jun 2021
b'Nextcloud'
disclosed a bug submitted by
b'rtod'
b'End to end encryption folder locking is not properly protected'
10 Jun 2021
b'Nextcloud'
disclosed a bug submitted by
b'rtod'
b'Trusted servers exchange can be triggered by attacker'
10 Jun 2021
b'UPchieve'
disclosed a bug submitted by
b'riski0912'
b'CORS Misconfiguration, could lead to disclosure of sensitive information'
09 Jun 2021
1
...
191
192
193
194
195
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
