REPORTS
PROGRAMS
PUBLISHERS
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'PHP (IBB)'
disclosed a bug submitted by
b'sediruoksitsero'
b'Out of Bounds Memory Read in php_jpg_get16'
09 Nov 2020
b'PHP (IBB)'
disclosed a bug submitted by
b'haquaman'
b'Buffer over-write in finfo_open with malformed magic file.'
09 Nov 2020
b'PHP (IBB)'
disclosed a bug submitted by
b'neex'
b'CVE-2019-11043: a buffer underflow in fpm_main.c can lead to RCE in php-fpm'
09 Nov 2020
b'PHP (IBB)'
disclosed a bug submitted by
b'jordyzomer'
b'phar_tar_writeheaders_int() buffer overflow'
09 Nov 2020
b'PHP (IBB)'
disclosed a bug submitted by
b'grigoritchy'
b'Use after free vulnerability in phar_parse_zipfile'
09 Nov 2020
b'PHP (IBB)'
disclosed a bug submitted by
b'ryat'
b'Use After Free in GC with Certain Destructors'
09 Nov 2020
b'PHP (IBB)'
disclosed a bug submitted by
b'shuoz'
b'null pointer dereference in imap_mail'
09 Nov 2020
b'Omise'
disclosed a bug submitted by
b'root_geek'
b'Broken Authentication and Session Management Flaw After Change Password and Logout'
08 Nov 2020
b'VK.com'
disclosed a bug submitted by
b'libneko'
b' API iframe/miniapp'
07 Nov 2020
b'Rocket.Chat'
disclosed a bug submitted by
b'sectex'
b'Remote Code Execution in Rocket.Chat-Desktop'
07 Nov 2020
b'TikTok'
disclosed a bug submitted by
b'sniper302'
b'CSRF To Add New App In Developer Account And Bypassing Json Format'
06 Nov 2020
b'BugPoC'
disclosed a bug submitted by
b'sayaanalam'
b'Finally , CTF is Solved'
06 Nov 2020
b'BugPoC'
disclosed a bug submitted by
b'machinexa'
b'LFI from bypassing image parser and faking HEAD response with redirection'
06 Nov 2020
b'Exodus'
disclosed a bug submitted by
b'mecrope'
b'Exposed Configuration Files at https://www.exodus.io/keybase.txt '
06 Nov 2020
b'curl'
disclosed a bug submitted by
b'm42a'
b'Connect-only connections can use the wrong connection'
05 Nov 2020
b'CS Money'
disclosed a bug submitted by
b'mr_vrush'
b'Pixel Flood Attack leads to Application level DoS'
05 Nov 2020
b'Nextcloud'
disclosed a bug submitted by
b'yahe'
b'Message Authentication Codes calculated by the Default Encryption Module allow an attacker to silently overwrite blocks in a file'
05 Nov 2020
b'Nextcloud'
disclosed a bug submitted by
b'yahe'
b'Downgrade encryption scheme and break integrity through known-plaintext attack'
05 Nov 2020
b'Rocket.Chat'
disclosed a bug submitted by
b'ivarsvids'
b'Desktop app RCE (#276031 bypass)'
05 Nov 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'luchua'
b'[Java] CWE-927: Sensitive broadcast '
04 Nov 2020
1
...
282
283
284
285
286
...
770
BY DENIS WERNER - @NOBBD -
IMPRESSUM