REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
84
b'linkks'
75
b'jobert'
70
b'nyymi'
64
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Internet Bug Bounty'
disclosed a bug submitted by
b'saurabhb'
b'Secrets not masked in UI when sensitive variables are set via Airflow cli'
30 Dec 2024
b'Truecaller '
disclosed a bug submitted by
b'marcotuliocnd'
b'Lack of URL Validation in avatarUrl at /v4/profile'
28 Dec 2024
b'Acronis'
disclosed a bug submitted by
b'darkdream'
b'[oem.acronis.com] Reflected Cross Site Scripting '
28 Dec 2024
b'AWS VDP'
disclosed a bug submitted by
b'zolaer9527'
b'A potential risk in the aws-lambda-ecs-run-task which can be used to privilege escalation.'
27 Dec 2024
b'curl'
disclosed a bug submitted by
b'scottarterbury'
b'Hackers Attack Curl Vulnerability Accessing Sensitive Information'
27 Dec 2024
b'MTN Group'
disclosed a bug submitted by
b'nhx1'
b'DOM Based Reflected Cross Site Scripting'
25 Dec 2024
b'MTN Group'
disclosed a bug submitted by
b'nhx1'
b'Information disclosure via enabled Django Debug Mode '
25 Dec 2024
b'MTN Group'
disclosed a bug submitted by
b'nhx1'
b'Improper Access Control leaks OTPs sent to all phone numbers'
25 Dec 2024
b'AWS VDP'
disclosed a bug submitted by
b'perigou'
b'Reflected XSS on Amazon EC2 Instance'
24 Dec 2024
b'AWS VDP'
disclosed a bug submitted by
b'perigou'
b'CVE-2020-5902 '
24 Dec 2024
b'HackerOne'
disclosed a bug submitted by
b'sarthakbhingare015'
b'Access to limited confidential information of private program as a Ex-reporter, Report Participant(external user) & Ex-staff member'
24 Dec 2024
b'Basecamp'
disclosed a bug submitted by
b'mrm0nk'
b'Bypass "Upgrade To Add Project" Restriction in Free Account To Create Multiple Projects Without Upgrading '
20 Dec 2024
b'curl'
disclosed a bug submitted by
b'hackeriron1'
b'bypass of this Fixed #2437131 [ Inadequate Protocol Restriction Enforcement in curl ]'
19 Dec 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'shuvam321'
b' Remote Code Execution and AWS IAM Credentials Exfiltration in https:///'
18 Dec 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'br0x1337'
b'CSRF leads to Account takeover'
18 Dec 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'br0x1337'
b'CSRF leads to Account takeover'
18 Dec 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'njmulsqb'
b'Sensitive data exposure via /secure/ endpoint on '
18 Dec 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'oxylis'
b'Sensitive data exposure: candidate resumes/CVs available to download with no authentication through BAC/IDOR/Improper Salesforce config'
18 Dec 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'prakhar0x01'
b'CSRF Attack on changing security questions leads to full Account TakeOver'
18 Dec 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'prakhar0x01'
b'CSRF Attack leads to delete album at'
18 Dec 2024
1
...
24
25
26
27
28
...
742
BY DENIS WERNER - @NOBBD -
IMPRESSUM
