REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Nextcloud'
disclosed a bug submitted by
b'michag86'
b'Circle email-members have still access to a shared folder/file after they are removed from the circle'
01 Mar 2020
b'Nextcloud'
disclosed a bug submitted by
b'jannikg'
b'Username and Access Token Disclousure'
01 Mar 2020
b'Nextcloud'
disclosed a bug submitted by
b'icewind1991'
b'(Authenticated) RCE by bypassing of the .htaccess blacklist'
01 Mar 2020
b'Nextcloud'
disclosed a bug submitted by
b'hassanmahmoud'
b'Password authentication at newsletter.nextcloud.com discloses username list'
01 Mar 2020
b'Nextcloud'
disclosed a bug submitted by
b'l0l1ch3ng'
b'SSRF on local storage of iOS mobile'
01 Mar 2020
b'GlobaLeaks'
disclosed a bug submitted by
b'iqzer0'
b'Since no defined tries for incorrect answer, an attacker can brute the answers and post a submission'
01 Mar 2020
b'RATELIMITED'
disclosed a bug submitted by
b'mazmur'
b'Information Disclosure PHPpgAdmin'
29 Feb 2020
b'Greenhouse.io'
disclosed a bug submitted by
b'ajxchapman'
b'Debug information disclosure on oauth-redirector.services.greenhouse.io'
29 Feb 2020
b'FormAssembly'
disclosed a bug submitted by
b'badis'
b'scripts loader DOS vulnerability'
29 Feb 2020
b'HackerOne'
disclosed a bug submitted by
b'zrachessanasz'
b'Total Paid Bounty Paid can be disclose'
28 Feb 2020
b'SEMrush'
disclosed a bug submitted by
b'a_d_a_m'
b'IDOR in semrush academy'
28 Feb 2020
b'SEMrush'
disclosed a bug submitted by
b'ajxchapman'
b'Ad Builder Display Ads Path Traversal'
28 Feb 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'mcollina'
b'Prototype pollution in multipart parsing'
28 Feb 2020
b'Twitter'
disclosed a bug submitted by
b'adarsh_p'
b'NO username used in authenthication to www.mopub.com leading to direct password submission which has unlimited submission rate.'
28 Feb 2020
b'Valve'
disclosed a bug submitted by
b'kohtep2010'
b'Malformed .BMP file in Counter-Strike 1.6 may cause shellcode injection'
27 Feb 2020
b'Valve'
disclosed a bug submitted by
b'kohtep2010'
b'Potential buffer overflow in demoplayer module of GoldSource Engine'
27 Feb 2020
b'Valve'
disclosed a bug submitted by
b'chippy'
b'Malformed .WAV triggers an Access Violation on GoldSRC (hl.exe)'
27 Feb 2020
b'Visma Bug Bounty Program'
disclosed a bug submitted by
b'spaceraccoon'
b'A user can view the name and number of a customer in another company if the GUID is known'
27 Feb 2020
b'Starbucks'
disclosed a bug submitted by
b'l00ph0le'
b'sdrc.starbucks.com - Information Disclosure via unsecured attachment directory'
26 Feb 2020
b'Visma Bug Bounty Program'
disclosed a bug submitted by
b'base_64'
b"A 'Read only' user can modify the company logotype and invoice background image"
26 Feb 2020
1
...
279
280
281
282
283
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM