REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'GitHub Security Lab'
disclosed a bug submitted by
b'grzegol'
b'CodeQL query to detect JNDI injections'
05 Jun 2020
b'HackerOne'
disclosed a bug submitted by
b'msdian7'
b'Unauthorized access to metadata of undisclosed reports that were retested'
05 Jun 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'logicmap'
b'gagliardetto: Query to detect incorrect conversion between numeric types'
04 Jun 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'grzegol'
b'CodeQL query to detect open Spring Boot actuator endpoints'
04 Jun 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'someonenobbd'
b'CPP: Missing/incomplete TLS server certificate hostname validation'
04 Jun 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'luchua'
b'[Java] CWE-939 - Address improper URL authorization'
04 Jun 2020
b'Mail.ru'
disclosed a bug submitted by
b'rainbow_json'
b'[pulse.mail.ru] ?????? ? ?????????? ????? ????????'
04 Jun 2020
b'Mail.ru'
disclosed a bug submitted by
b'urban_tramp'
b'XSS on https://deti.mail.ru/'
04 Jun 2020
b'Mail.ru'
disclosed a bug submitted by
b'byq'
b'[my.games] Stored XSS via untrusted bucket'
04 Jun 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'chalker'
b'[crypto-js] Insecure entropy source - Math.random()'
04 Jun 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'ryotak'
b'[Limited bypass of #793704] Blind SSRF in Ghost CMS'
04 Jun 2020
b'Brave Software'
disclosed a bug submitted by
b'0xrobot'
b'Username Information Disclosure via Json response - Using parameter number Intruder'
04 Jun 2020
b'Brave Software'
disclosed a bug submitted by
b'dracomalfoy'
b'HTTP Request Smuggling'
04 Jun 2020
b'Nextcloud'
disclosed a bug submitted by
b'chevonphillip'
b'Allows any user to share their "Root" level folder by sharing "."'
03 Jun 2020
b'Nextcloud'
disclosed a bug submitted by
b'christophwurst'
b'Mail does not verify IMAP/SMTP host connected via TLS'
03 Jun 2020
b'Node.js'
disclosed a bug submitted by
b'fwilhelm'
b'Node.js: TLS session reuse can lead to hostname verification bypass'
03 Jun 2020
b'Smule'
disclosed a bug submitted by
b'ajayshrimali'
b'Error Page Content Spoofing or Text Injection '
03 Jun 2020
b'Nextcloud'
disclosed a bug submitted by
b'covert-spectre'
b'Code injection possible with malformed Nextcloud Talk chat commands'
02 Jun 2020
b'InnoGames'
disclosed a bug submitted by
b'batee5a'
b'Unprivileged alliance member is able to recruit new members to his alliance and accepting them (xs1.grepolis.com)'
02 Jun 2020
b'Ubiquiti Inc.'
disclosed a bug submitted by
b'grampae'
b'Reflected XSS in Nanostation Loco M2 - AirOS ver=6.1.7'
01 Jun 2020
1
...
253
254
255
256
257
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM