REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Node.js third-party modules'
disclosed a bug submitted by
b'mik317'
b'[git-lib] RCE via insecure command formatting'
24 Sep 2020
b'Visma Public'
disclosed a bug submitted by
b'zeop'
b'Bypassing Business ID/VAT # validation during registration to create accounts with duplicate Business ID/VAT #'
24 Sep 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'ahihi'
b'property-expr - Prototype pollution'
24 Sep 2020
b'Starbucks'
disclosed a bug submitted by
b'xmfc'
b'China - IDOR on Reservation Staging/Non Production Site - https://reservation.stg.starbucks.com.cn'
22 Sep 2020
b'Topcoder'
disclosed a bug submitted by
b'sodium_'
b'Stored-Xss at connect.topcoder.com/projects/ affected on project chat members'
22 Sep 2020
b'Solana BBP'
disclosed a bug submitted by
b'0x4_aulia'
b'Public and secret api key leaked via Solana BBP github repo'
22 Sep 2020
b'Valve'
disclosed a bug submitted by
b'kbeckmann'
b'[steam client] Opening a specific steam:// url overwrites files at an arbitrary location'
22 Sep 2020
b'Valve'
disclosed a bug submitted by
b'kbeckmann'
b'[Half-Life 1] Malformed map name leads to memory corruption and code execution'
22 Sep 2020
b'New Relic'
disclosed a bug submitted by
b'jhimansh'
b'"Basic user" which can only access a limited subset of the platform can access certain pages which are restricted to the user by the account owner.'
22 Sep 2020
b'8x8'
disclosed a bug submitted by
b'wh0ru'
b'DOM Based XSS at docs.8x8.com'
22 Sep 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'0xelkomy'
b'Reflected Xss'
21 Sep 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'oucast-'
b'CVE-2020-3187 - Unauthenticated Arbitrary File Deletion'
21 Sep 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'0x9747'
b'Sensitive information about a ??????'
21 Sep 2020
b'Open-Xchange'
disclosed a bug submitted by
b'catenacyber'
b'Buffer over read from `smtp_command_parse_parameters`'
21 Sep 2020
b'Nextcloud'
disclosed a bug submitted by
b'meliodas19'
b'Stored XSS in collabora via user name'
19 Sep 2020
b'Mail.ru'
disclosed a bug submitted by
b'nagli'
b'Broken twitter link hijacking at https://games.mail.ru/pc/search/'
18 Sep 2020
b'Mail.ru'
disclosed a bug submitted by
b'sniper302'
b'Log files Leaked In mcsblog.ru'
18 Sep 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'ansuj'
b'[@knutkirkhorn/free-space] - Command Injection through Lack of Sanitization'
18 Sep 2020
b'Solana BBP'
disclosed a bug submitted by
b'crazy_criminal_bj-4545'
b'email spoofing'
17 Sep 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'someonenobbd'
b'Java : add MongoDB injection sinks'
17 Sep 2020
1
...
218
219
220
221
222
...
693
BY DENIS WERNER - @NOBBD -
IMPRESSUM