REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Basecamp'
disclosed a bug submitted by
b'shrey3'
b"Information Disclosure of Garbage Collection Cycle 'Again' "
16 Dec 2020
b'8x8'
disclosed a bug submitted by
b'stilou'
b'Admin Reseller Account Disclosure'
15 Dec 2020
b'8x8'
disclosed a bug submitted by
b'stilou'
b'vidyard api auth_token exposed'
15 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'javakhishvili'
b'HTML Injection at "city-mobil.ru"'
15 Dec 2020
b'Basecamp'
disclosed a bug submitted by
b'ok_bye_now'
b'Premium Email Address Check Bypass - Hey'
15 Dec 2020
b'Automattic'
disclosed a bug submitted by
b'atc_h1h1'
b'GET /api/v2/url_info endpoint is vulnerable to Blind SSRF'
15 Dec 2020
b'TikTok'
disclosed a bug submitted by
b'lauritz'
b'[CSRF] TikTok Careers Portal Account Takeover'
15 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'ub1k'
b'Web cache information leakage at sbermarket.ru'
14 Dec 2020
b'Topcoder'
disclosed a bug submitted by
b'powerpuff'
b'CSRF on https://apps.topcoder.com/wiki/users/editmyprofilepicture.action'
14 Dec 2020
b'Topcoder'
disclosed a bug submitted by
b'powerpuff'
b'CSRF on https://apps.topcoder.com/wiki/pages/doattachfile.action'
14 Dec 2020
b'Glassdoor'
disclosed a bug submitted by
b'l0cpd'
b"Reflected XSS at https://www.glassdoor.com/ via the 'numSuggestions' parameter"
14 Dec 2020
b'WordPress'
disclosed a bug submitted by
b'erwan_lr'
b"Arbitrary change of blog's background image via CSRF"
14 Dec 2020
b'Imgur'
disclosed a bug submitted by
b'1a2er3d'
b'Bypass subscription'
13 Dec 2020
b'Stripo Inc'
disclosed a bug submitted by
b'abhishek101'
b'No rate limiting for confirmation email lead to huge Mass mailings'
11 Dec 2020
b'Stripo Inc'
disclosed a bug submitted by
b'falcon_319'
b'SSRF external interaction'
11 Dec 2020
b'Yoti'
disclosed a bug submitted by
b'duckoverflow'
b'Multiple Vulnerabilities in (*www.yoti.com) - Leads to Leakage user admin Sensitive Exposure'
11 Dec 2020
b'Semrush'
disclosed a bug submitted by
b'a_d_a_m'
b'Broken validation of user Id for JWT Token'
11 Dec 2020
b'OPPO'
disclosed a bug submitted by
b'darkwatcher'
b'Information Disclosure at https://portal.finzfin.com/1.txt'
11 Dec 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'trygve_lie'
b'Default behavior of Fastifys versioned routes can be used for cache poisoning when Fastify is used in combination with a http cache / CDN'
10 Dec 2020
b'Glassdoor'
disclosed a bug submitted by
b'ta8ahi'
b'Site wide CSRF affecting both job seeker and Employer account on glassdoor.com'
10 Dec 2020
1
...
194
195
196
197
198
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM