REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
57
b'ooooooo_q'
50
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'HackerOne'
disclosed a bug submitted by
b'jobert'
b'Stored Cross-Site Scripting vulnerability in example Custom Digital Agreement'
18 Mar 2021
b'HackerOne'
disclosed a bug submitted by
b'sodium_'
b'"Bounty splitting enabled" can discloses if public VDPs are running private VRP'
18 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'sniper302'
b'Full Account Takeover Student Account In https://uchi.ru/signin/main/student/email'
18 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'zerody'
b'Eval-based XSS in Game JS API (mailru.core.js) via cross-origin postMessage()'
18 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'k3ypt0'
b'SQL injection delivery-club.ru (ClickHouse)'
18 Mar 2021
b'Mail.ru'
disclosed a bug submitted by
b'sniper302'
b'Full Account Takeover In uchi.ru'
18 Mar 2021
b'Rocket.Chat'
disclosed a bug submitted by
b'legalizenepal'
b'Android App Crashes while sending message to users/ on channel '
18 Mar 2021
b'Bumble'
disclosed a bug submitted by
b'dhakal_bibek'
b'Misconfigured oauth leads to Pre account takeover '
18 Mar 2021
b'GitLab'
disclosed a bug submitted by
b'hx01'
b'Ability To Delete User(s) Account Without User Interaction'
17 Mar 2021
b'Lark Technologies'
disclosed a bug submitted by
b'base_64'
b'Messages disclosure via search feature of other users group(Cross-Tenant).'
17 Mar 2021
b'VK.com'
disclosed a bug submitted by
b'onlymalelove'
b'Stored XSS (m.vk.com)'
17 Mar 2021
b'TikTok'
disclosed a bug submitted by
b'dphoeniixx'
b'Multiple bugs leads to RCE on TikTok for Android'
17 Mar 2021
b'pixiv'
disclosed a bug submitted by
b'chaosbolt'
b'RCE due to ImageTragick v2'
16 Mar 2021
b'Revive Adserver'
disclosed a bug submitted by
b'solov9ev'
b'Reflected XSS on /admin/stats.php'
16 Mar 2021
b'Revive Adserver'
disclosed a bug submitted by
b'solov9ev'
b'Reflected XSS on /admin/campaign-zone-zones.php'
16 Mar 2021
b'Acronis'
disclosed a bug submitted by
b'adr'
b'Arbitrary file creation via symlink attack on syncagentsrv (Acronis Sync Agent Service)'
16 Mar 2021
b'Acronis'
disclosed a bug submitted by
b'bughunter98'
b'Unrestricted file upload vulnerability in IMCE'
16 Mar 2021
b'Acronis'
disclosed a bug submitted by
b'ashishmurugan'
b'ClickJacking'
16 Mar 2021
b'GitLab'
disclosed a bug submitted by
b'muthu_prakash'
b'Revoked User can still view the Merge Request created by him via API'
15 Mar 2021
b'Uber'
disclosed a bug submitted by
b'healdb'
b'SQLI on uberpartner.eu leads to exposure of sensitive user data of Uber partners'
15 Mar 2021
1
...
192
193
194
195
196
...
718
BY DENIS WERNER - @NOBBD -
IMPRESSUM
