REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b"Image Injection on `/bully/anniversaryedition` may lead to FB's OAuth Token Theft."
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Image injection /br/games/info may lead to phishing attacks or FB OAuth theft.'
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'DOM based XSS on /GTAOnline/tw/starterpack/'
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Referer Referer Header Leakage in language changer may lead to FB token theft'
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b"Referer Leakage Vulnerability in socialclub.rockstargames.com/crew/ leads to FB'S OAuth token theft."
24 Jun 2020
b'Twitter'
disclosed a bug submitted by
b'filedescriptor'
b'Bypassing Digits origin validation which leads to account takeover'
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Dom based XSS on www.rockstargames.com/GTAOnline/features/freemode'
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Image Injection vulnerability affecting www.rockstargames.com/careers may lead to Facebook OAuth Theft'
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Image Injection vulnerability in www.rockstargames.com/IV/screens/1280x720Image.html'
24 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Image Injection/XSS vulnerability affecting https://www.rockstargames.com/newswire/article'
24 Jun 2020
b'Rocket.Chat'
disclosed a bug submitted by
b'steven_julian22'
b'[Security Vulnerability Rocket.chat] HTML Injection into Email via Signup'
24 Jun 2020
b'Open-Xchange'
disclosed a bug submitted by
b'eirini'
b'Directory traversal allows execution of arbitrary binaries usign doveadm exec'
23 Jun 2020
b'Engel & V\xc3\xb6lkers Technology GmbH'
disclosed a bug submitted by
b'kasperkarlsson'
b'[service.engelvoelkers.com] XSS in /video/id'
23 Jun 2020
b'h1-ctf'
disclosed a bug submitted by
b'leoastorga_g'
b'[H1-2006 2020] CTF Writeup'
22 Jun 2020
b'8x8'
disclosed a bug submitted by
b'madrobot'
b'Publicly accessible .svn repository - aastraconf.packet8.net'
22 Jun 2020
b'8x8'
disclosed a bug submitted by
b'madrobot'
b'Hardcoded credentials in Android App'
22 Jun 2020
b'8x8'
disclosed a bug submitted by
b'madrobot'
b'Post based XSS (Cross site scripting) on https://apimgr.8x8.com'
22 Jun 2020
b'h1-ctf'
disclosed a bug submitted by
b'bcobain23'
b'[H1-2006 2020] Bypassing access control checks by modifying the URL, internal application state, or the HTML page, or using a custom API attack tool'
22 Jun 2020
b'8x8'
disclosed a bug submitted by
b'bugify12334'
b'Blind Command Injection #1'
22 Jun 2020
b'Greenhouse.io'
disclosed a bug submitted by
b'lonelyhuman'
b'SSH port on store.greenhouse.io is vulnerable to brute force attacks'
22 Jun 2020
1
...
245
246
247
248
249
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM