REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Mars'
disclosed a bug submitted by
b'thpless'
b'phpinfo() exposed on '
21 Nov 2024
b'Mars'
disclosed a bug submitted by
b'cholo_'
b'Upload profile photo and Pets addition - IDOR'
21 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'RXSS on via q parameter'
21 Nov 2024
b'Nextcloud'
disclosed a bug submitted by
b'tuyenee'
b'External storage - global credentials returned to the client side in plaintext'
21 Nov 2024
b'Acronis'
disclosed a bug submitted by
b'mr-medi'
b'DOM Based Cookie Bomb in *.acronis.com via x-clickref GET Parameter'
21 Nov 2024
b'Mozilla'
disclosed a bug submitted by
b'bashbdeer'
b'csrftoken not unique to session or specific user and csrfmiddlewaretoken can be altered'
20 Nov 2024
b'Acronis'
disclosed a bug submitted by
b'tomblorg'
b'Reflected XSS in https://www.acronis.com/products/cyber-protect/trial/'
20 Nov 2024
b'Planet Labs'
disclosed a bug submitted by
b'y0usef'
b'Api data leak'
20 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'RXSS in via S parameter '
19 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'sensitive data-creds for database - private key'
19 Nov 2024
b'Mars'
disclosed a bug submitted by
b'mo_salah12'
b'CSRF in Delete Pet Function'
19 Nov 2024
b'Mars'
disclosed a bug submitted by
b'e5p3ctr0x96'
b'Reflected XSS on formaction parameter'
19 Nov 2024
b'AWS VDP'
disclosed a bug submitted by
b'zolaer9527'
b'A potential risk in the cloudFrontExtensionsConsole which can be used to privilege escalation.'
19 Nov 2024
b'HackerOne'
disclosed a bug submitted by
b'madara_'
b'Hackerone supports accounts organitation takeover'
19 Nov 2024
b'Cosmos'
disclosed a bug submitted by
b'l33thaxor'
b'Heap-Buffer-Overread in contains_whitespace when calling parser_validate after supplying a maliciously crafted buffer to parser_parse'
19 Nov 2024
b'Nextcloud'
disclosed a bug submitted by
b'cx75fa'
b'Share information of Tables app is not limited to affected users '
18 Nov 2024
b'Omise'
disclosed a bug submitted by
b'ndizon_'
b'Open redirect Via X-Forwarded-Host'
17 Nov 2024
b'Nextcloud'
disclosed a bug submitted by
b'tuyenee'
b'Nextcloud Tables app - inserting rows to an arbitrary table possible'
17 Nov 2024
b'MTN Group'
disclosed a bug submitted by
b'offensiveops'
b'CVE-2017-9822 DotNetNuke Cookie Deserialization Remote Code Execution (RCE) on lonidoor.mtn.ci'
16 Nov 2024
b'Nextcloud'
disclosed a bug submitted by
b'maccs'
b'User can copy locked folders and gain access to the contents'
16 Nov 2024
1
...
23
24
25
26
27
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
