REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Node.js third-party modules'
disclosed a bug submitted by
b'd3lla'
b'[diskstats] Command Injection via insecure command concatenation'
23 Jul 2020
b'Kubernetes'
disclosed a bug submitted by
b'riderattitude'
b'Private IP addresses Disclosure'
23 Jul 2020
b'Kubernetes'
disclosed a bug submitted by
b'hackerboy404'
b'Clickjacking'
23 Jul 2020
b'MTN Group'
disclosed a bug submitted by
b'rpbeast33'
b'Java Debug Console Provides Command Injection Without Privellage Esclation'
23 Jul 2020
b'lemlist'
disclosed a bug submitted by
b'omarelfarsaoui'
b'app.lemlist.com : Admin Panel Access'
23 Jul 2020
b'lemlist'
disclosed a bug submitted by
b'solov9ev'
b'Stored XSS in app.lemlist.com'
23 Jul 2020
b'Maximum'
disclosed a bug submitted by
b'what_web'
b'[mijn.werkenbijdefensie.nl] Denial of service occurs due to lack of email length confirmation'
23 Jul 2020
b'Pornhub'
disclosed a bug submitted by
b'kaimi'
b'View storyboard of private video @ ht.pornhub.com'
23 Jul 2020
b'Starbucks'
disclosed a bug submitted by
b'ko2sec'
b'Singapore - Unrestricted File Upload Leads to XSS on campaign.starbucks.com.sg/api/upload'
22 Jul 2020
b'Starbucks'
disclosed a bug submitted by
b'rugb'
b'Singapore - XXE at https://www.starbucks.com.sg/RestApi/soap11'
22 Jul 2020
b'Kubernetes'
disclosed a bug submitted by
b'kebe'
b'Node disk DOS by writing to container /etc/hosts'
22 Jul 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'luchua'
b'Java: CWE-939 - Address improper URL authorization'
21 Jul 2020
b'8x8'
disclosed a bug submitted by
b'shakhawatpr99'
b'Stored Cross Site Scripting.'
21 Jul 2020
b'Zomato'
disclosed a bug submitted by
b'technicaljunkie'
b' The vulnerabilities found were XSS, Public disclosure, Network enumeration via CSRF, DLL hijacking.'
21 Jul 2020
b'lemlist'
disclosed a bug submitted by
b'omarelfarsaoui'
b'stored xss via Campaign Name.'
21 Jul 2020
b'lemlist'
disclosed a bug submitted by
b'omarelfarsaoui'
b'stored xss in app.lemlist.com'
21 Jul 2020
b'concrete5'
disclosed a bug submitted by
b'javakhishvili'
b'Remote Code Execution (Reverse Shell) - File Manager'
21 Jul 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'saddean_'
b'[express-cart] Wide CSRF in application'
21 Jul 2020
b'Courier'
disclosed a bug submitted by
b't3chn0phil3'
b'SSO Provider Credential Cache (logged out of Google/GitHub, could still log into Courier)'
20 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'justchillin'
b'User session access due to Oauth whitelist host bypass and postMessage'
20 Jul 2020
1
...
283
284
285
286
287
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM