REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
57
b'ooooooo_q'
50
b'haxta4ok00'
49
b'jon_bottarini'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'TikTok'
disclosed a bug submitted by
b'luizviana'
b'Bypass SMS verification to delete TikTok account'
23 Dec 2020
b'Ruby on Rails'
disclosed a bug submitted by
b'ooooooo_q'
b'Open Redirect (6.0.0 < rails < 6.0.3.2)'
22 Dec 2020
b'WHO COVID-19 Mobile App'
disclosed a bug submitted by
b'hackbhavin'
b'DMARC and SPF records'
22 Dec 2020
b'WHO COVID-19 Mobile App'
disclosed a bug submitted by
b'spaceraccoon'
b"Improper Input Validation on User's Location on PUT /WhoService/putLocation Could Affect Availability/Falsify Users"
22 Dec 2020
b'pixiv'
disclosed a bug submitted by
b'zimmer75'
b'Open Redirect at https://oauth.secure.pixiv.net'
22 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'daniyal_nasir'
b'Data URI Stored XSS on Donations Page'
22 Dec 2020
b'TikTok'
disclosed a bug submitted by
b'luizviana'
b'Multiple Cross-Site Scripting vulnerability via the language parameter'
21 Dec 2020
b'WHO COVID-19 Mobile App'
disclosed a bug submitted by
b'd0nut'
b'Probably unexploitable XSS via Header Injection'
21 Dec 2020
b'Stripo Inc'
disclosed a bug submitted by
b'exploit_db'
b'Permanent DOS for new users!'
21 Dec 2020
b'phpBB'
disclosed a bug submitted by
b'they'
b"Server Side Request Forgery in 'Jabber settings' in Admin Control Panel"
20 Dec 2020
b'CS Money'
disclosed a bug submitted by
b'libneko'
b' / , steamid'
20 Dec 2020
b'Snapchat'
disclosed a bug submitted by
b'drrichardmatthews'
b'CreatorID leaked from public content posted to SnapMaps'
18 Dec 2020
b'TikTok'
disclosed a bug submitted by
b'gnux'
b'User Able to Reopen a Ticket by Modify the Request'
18 Dec 2020
b'TikTok'
disclosed a bug submitted by
b'sniper302'
b'User In The Same Center Can Create CSRF To Change The Information About Business'
18 Dec 2020
b'Nintendo'
disclosed a bug submitted by
b'mrnbayoh'
b'[3DS][SSL][SDK] Unchecked number of audio channels in Mobiclip SDK leads to RCE in eShop movie player'
18 Dec 2020
b'Nintendo'
disclosed a bug submitted by
b'mrnbayoh'
b'[3DS][SSL] Use of uninitialized class member leads to RCE in eShop movie player'
18 Dec 2020
b'Nintendo'
disclosed a bug submitted by
b'mrnbayoh'
b'[3DS][SSL] Improper certificate validation allows an attacker to perform MitM attacks'
18 Dec 2020
b'MariaDB'
disclosed a bug submitted by
b'gabriel_sztejnworcel'
b'Named pipe connection inteception'
17 Dec 2020
b'TikTok'
disclosed a bug submitted by
b'chihuahua'
b'Blind SSRF in ads.tiktok.com'
17 Dec 2020
b'Basecamp'
disclosed a bug submitted by
b'demonia'
b'Bypass Tracking Blocker Protection Using Slashes Without Protocol On The Image Source.'
17 Dec 2020
1
...
219
220
221
222
223
...
718
BY DENIS WERNER - @NOBBD -
IMPRESSUM
