REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'curl'
disclosed a bug submitted by
b'm42a'
b'Connect-only connections can use the wrong connection'
05 Nov 2020
b'CS Money'
disclosed a bug submitted by
b'mr_vrush'
b'Pixel Flood Attack leads to Application level DoS'
05 Nov 2020
b'Nextcloud'
disclosed a bug submitted by
b'yahe'
b'Message Authentication Codes calculated by the Default Encryption Module allow an attacker to silently overwrite blocks in a file'
05 Nov 2020
b'Nextcloud'
disclosed a bug submitted by
b'yahe'
b'Downgrade encryption scheme and break integrity through known-plaintext attack'
05 Nov 2020
b'Rocket.Chat'
disclosed a bug submitted by
b'ivarsvids'
b'Desktop app RCE (#276031 bypass)'
05 Nov 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'luchua'
b'[Java] CWE-927: Sensitive broadcast '
04 Nov 2020
b'curl'
disclosed a bug submitted by
b'brumbrum'
b'Data race conditions reported by helgrind when performing parallel DNS queries in libcurl'
04 Nov 2020
b'Basecamp'
disclosed a bug submitted by
b'ahmd_halabi'
b'Information Disclosure of Garbage Collection Cycle'
04 Nov 2020
b'Brave Software'
disclosed a bug submitted by
b'sickcodes'
b'Brave Browser potentially logs the last time a Tor window was used'
04 Nov 2020
b'PortSwigger Web Security'
disclosed a bug submitted by
b'duesee'
b'SMTP interaction theft via MITM'
04 Nov 2020
b'Snapchat'
disclosed a bug submitted by
b'damian89'
b'Access to multiple production Grafana dashboards'
04 Nov 2020
b'GitLab'
disclosed a bug submitted by
b'chaosbolt'
b'Instant open redirect on Live preview WEB Ide opening'
04 Nov 2020
b'Nextcloud'
disclosed a bug submitted by
b'kittytrace'
b'No rate limiting for confirmation email lead to huge Mass mailings'
04 Nov 2020
b'Mail.ru'
disclosed a bug submitted by
b'st00rm'
b'Path traversal on bank.mail.ru ( CVE-2013-3827 )'
04 Nov 2020
b'Mail.ru'
disclosed a bug submitted by
b'dennisleo6'
b'cross site scripting bypass session '
04 Nov 2020
b'GitLab'
disclosed a bug submitted by
b'ajxchapman'
b'GitLab-Runner on Windows `DOCKER_AUTH_CONFIG` container host Command Injection'
04 Nov 2020
b'Mail.ru'
disclosed a bug submitted by
b'maxarr'
b'mrgs.my.games account takeover'
03 Nov 2020
b'Mail.ru'
disclosed a bug submitted by
b'jayesh25'
b'Account Takeover possibility via https://awards.donationalerts.com using login with twitch.tv'
03 Nov 2020
b'Acronis'
disclosed a bug submitted by
b'dgirlwhohacks'
b'Clickjacking on cas.acronis.com login page'
03 Nov 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'pi_hunter50'
b'PII Leak (such as CAC User ID) at https:///pages/login.aspx'
02 Nov 2020
1
...
251
252
253
254
255
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
