REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Acronis'
disclosed a bug submitted by
b'adr'
b'Arbitrary DLL injection in mmsminisrv (Acronis Managed Machine Service Mini)'
20 Oct 2020
b'Acronis'
disclosed a bug submitted by
b'f_m'
b'DOM based XSS in store.acronis.com/<id>/purl-corporate-standard-IT [cfg parameter]'
20 Oct 2020
b'Visma Public'
disclosed a bug submitted by
b'zeop'
b'HTTP Request Smuggling at app.workbox.dk'
20 Oct 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'someonenobbd'
b'Java: CWE-749 Unsafe resource loading in Android WebView leaking to injection attacks'
19 Oct 2020
b'Zivver'
disclosed a bug submitted by
b'nikolat3sla'
b'Two-factor authentication can be disabled when logged in without 2fa or password confirmation '
19 Oct 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'gkmr'
b'[json8-merge-patch] Prototype Pollution'
18 Oct 2020
b'Node.js'
disclosed a bug submitted by
b'underflow0'
b'Slowloris, body parsing'
17 Oct 2020
b'Node.js'
disclosed a bug submitted by
b'shogunpanda'
b'Denial of Service by resource exhaustion CWE-400 due to unfinished HTTP/1.1 requests'
17 Oct 2020
b'Node.js'
disclosed a bug submitted by
b'ashi009'
b'`fs.realpath.native` on darwin may cause buffer overflow'
17 Oct 2020
b'Node.js'
disclosed a bug submitted by
b'amitklein'
b'HTTP Request Smuggling due to CR-to-Hyphen conversion'
17 Oct 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'hassanshahid'
b'https://?????? vulnerable to CVE-2020-3187 - Unauthenticated arbitrary file deletion in Cisco ASA/FTD'
16 Oct 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'r4d1kal'
b'Sensitive data exposure via https://????????.mil/secure/QueryComponent!Default.jspa - CVE-2020-14179'
16 Oct 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'mzfr'
b'[CVE-2020-3452] Unauthenticated file read in Cisco ASA'
16 Oct 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'arm4nd0'
b'[??????????.mil] Cisco VPN Service Path Traversal'
16 Oct 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'yassinek3ch'
b'[SQLI ]Time Bassed Injection at ?????????? via referer header'
16 Oct 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'x3ph_'
b'External Service Interaction | https://?????????.mil'
16 Oct 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'dhakal_bibek'
b'CSRF to account takeover in https://???????.mil/'
16 Oct 2020
b'Solana BBP'
disclosed a bug submitted by
b'daniel1895'
b'Heap memory can be accessible through metrics.solana.com'
16 Oct 2020
b'Solana BBP'
disclosed a bug submitted by
b'daniel1895'
b'Buffer can be readable through Debug on metrics.solana.com '
16 Oct 2020
b'Engel & V\xc3\xb6lkers Technology Gmb'
disclosed a bug submitted by
b'jeffallan'
b'Debug information at the /sapi endpoint'
16 Oct 2020
1
...
209
210
211
212
213
...
691
BY DENIS WERNER - @NOBBD -
IMPRESSUM