REPORTS
PROGRAMS
PUBLISHERS
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Mail.ru'
disclosed a bug submitted by
b'0x01alka'
b' 1C '
06 Apr 2021
b'Mail.ru'
disclosed a bug submitted by
b'impalanichamy'
b"Information Disclosure of Garbage Collection Cycle 'Again'"
06 Apr 2021
b'HackerOne'
disclosed a bug submitted by
b'ex1st4nc3_'
b'Ability to invite a new member on Sandbox Program'
05 Apr 2021
b'Liberapay'
disclosed a bug submitted by
b'samjoy_26'
b'Login CSRF : Login Authentication Flaw on https://liberapay.com/'
05 Apr 2021
b'TikTok'
disclosed a bug submitted by
b'bubbounty'
b'Cross-Tenant IDOR ( graphql `AddRulesToPixelEvents` query ) allowing to add, update, and delete rules of any Pixel events on the platform'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'fuomag9'
b'Website vulnerable to POODLE (SSLv3) with expired certificate'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'hemantsolo'
b'Password Reset link hijacking via Host Header Poisoning leads to account takeover'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'chron0x_'
b'Reflected XSS on '
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'chron0x_'
b'Reflected XSS on '
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'nirajgautamit'
b'Reflected XSS in https:// via "" parameter'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'mysteryengine'
b'Read-only path traversal (CVE-2020-3452) at https://'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'mysteryengine'
b'Read-only path traversal (CVE-2020-3452) at https://'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'frenchvlad'
b'Improper Access Control - Generic on https://'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'frenchvlad'
b'External Service Interaction (HTTP/DNS) on https://www. ( parameter)'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'frenchvlad'
b'XML Injection on https://www. ( parameter)'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'mysteryengine'
b'Read-only path traversal (CVE-2020-3452) at https://.mil'
02 Apr 2021
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'chron0x_'
b'Reflected XSS on '
02 Apr 2021
b'Kubernetes'
disclosed a bug submitted by
b'sml555'
b'KOPS documentation references domains which were not registered'
02 Apr 2021
b'Clario'
disclosed a bug submitted by
b'br33z3'
b'Google API key leaks and security misconfiguration leads Open Redirect Vulnerability'
01 Apr 2021
b'HackerOne'
disclosed a bug submitted by
b'updatelap'
b'HackerOne Jira integration plugin Leaked JWT to unauthorized jira users'
01 Apr 2021
1
...
238
239
240
241
242
...
769
BY DENIS WERNER - @NOBBD -
IMPRESSUM