REPORTS
PROGRAMS
PUBLISHERS
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Automattic'
disclosed a bug submitted by
b'haqsek2'
b'Email Verification bypass on signup'
03 Dec 2020
b'Kubernetes'
disclosed a bug submitted by
b'piqin'
b'csi-snapshot-controller crashes when processing VolumeSnapshot with non-existing PVC'
03 Dec 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'asgerf'
b'[chart.js] Prototype pollution'
02 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'alexeysergeevich'
b'stored xss + .'
02 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'act1on3'
b'[smena.samokat.ru] Predictable JWT secret'
02 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'chaosbolt'
b'[ICQ] nwwwstg-d01.ops.icq.com check mk agent exposed to public'
02 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'ub1k'
b'Users information leak at sbermarket.ru'
01 Dec 2020
b'Mail.ru'
disclosed a bug submitted by
b'0x01alka'
b'/sql http://mx36.ucs.ru/ reflected XSS.'
01 Dec 2020
b'Showmax'
disclosed a bug submitted by
b'logicalh4x0r'
b'WordPress admin is accessible without HTTP authentication'
01 Dec 2020
b'GitLab'
disclosed a bug submitted by
b'yvvdwf'
b'Store-XSS in error message of build-dependencies '
01 Dec 2020
b'GitLab'
disclosed a bug submitted by
b'ngalog'
b'[Admin Panel] CSRF to resume/pause runner'
01 Dec 2020
b'Affirm'
disclosed a bug submitted by
b'yogesh_ojha'
b'Absence of Token expiry leads to Unauthorized login Access'
01 Dec 2020
b'GitLab'
disclosed a bug submitted by
b'vaib25vicky'
b'Unauthorized user is able to access schedule pipeline variables and values'
30 Nov 2020
b'Snapchat'
disclosed a bug submitted by
b'nahamsec'
b'Server-Side Request Forgery using Javascript allows to exfill data from Google Metadata'
30 Nov 2020
b'BugPoC'
disclosed a bug submitted by
b'whitehat1443hacker'
b'Strict Transport Security Misconfiguration'
30 Nov 2020
b'Stripo Inc'
disclosed a bug submitted by
b'kittytrace'
b'No rate limiting for subscribe email + lead to Cross origin misconfiguration'
30 Nov 2020
b'Kubernetes'
disclosed a bug submitted by
b'todayisnew'
b'Subdomain Takeover Via via Dangling NS records on Amazon Route 53 http://api.e2e-kops-aws-canary.test-cncf-aws.canary.k8s.io'
29 Nov 2020
b'Kubernetes'
disclosed a bug submitted by
b'derek0405'
b'secret leaks in vsphere cloud controller manager log'
29 Nov 2020
b'Kubernetes'
disclosed a bug submitted by
b'purelyapplied'
b'CVE-2019-11250 remains in effect.'
29 Nov 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'bilk0h'
b'[last-commit-log] Command Injection'
29 Nov 2020
1
...
274
275
276
277
278
...
770
BY DENIS WERNER - @NOBBD -
IMPRESSUM