REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'balisong'
b' SharePoint Web Services Exposed to Anonymous Access Users'
14 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'woj_ciech'
b'Sensitive information exposure via git commit'
13 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'hunter_py'
b'Reflected XSS on http://info.ucs.ru/settings/check/'
13 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'weev3kyaw'
b'Stored XSS that allow an attacker to read victim mailboxes contacts in mail.ru and my.com application'
13 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'm7mdharoun'
b'Subdomain Takeover at blog.instamart.ru'
13 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'r0hack'
b'Cross-organization data access in city-mobil.ru'
13 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'justchillin'
b'Reflected XSS in city-mobil.ru/'
13 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'dedsec69'
b'Improper access control leading to deletion of Greeting videos on {https://smtp.8mar.mail.ru/}'
13 Jul 2020
b'Mail.ru'
disclosed a bug submitted by
b'ch0c0'
b'[icq.com/people/*uin*/edit] ??????????? ?????? ? ???????? ?? ????? ? ???? "???????"'
13 Jul 2020
b'Stripo Inc'
disclosed a bug submitted by
b'whitehatmat'
b'Integer Overflow (CVE_2017_7529)'
13 Jul 2020
b'Stripo Inc'
disclosed a bug submitted by
b'dotsecurity'
b'SSRF via Export Service in ActiveCampaign'
13 Jul 2020
b'Ruby on Rails'
disclosed a bug submitted by
b'ooooooo_q'
b'File writing by Directory traversal at actionpack-page_caching and RCE by it'
13 Jul 2020
b'Helium'
disclosed a bug submitted by
b'amr321'
b'Read-Only user can delete users'
10 Jul 2020
b'Twitter'
disclosed a bug submitted by
b'updatelap'
b'Ability to bruteforce mopub account\xe2\x80\x99s password due to lack of rate limitation protection using {ip rotation techniques}'
10 Jul 2020
b'Maximum'
disclosed a bug submitted by
b'what_web'
b'[www.werkenbijbakertilly.nl] Denial of service due to incorrect server return can result in total denial of service.'
10 Jul 2020
b'Maximum'
disclosed a bug submitted by
b'what_web'
b'[www.werkenbijderet.nl] There is no rate limit for vacature-alert endpoints'
10 Jul 2020
b'Moneybird'
disclosed a bug submitted by
b'ant_pyne'
b"Pending MFA logins aren't immediatly expired after a password change"
10 Jul 2020
b'TTS Bug Bounty'
disclosed a bug submitted by
b'justchillin'
b'Blind SSRF on https://labs.data.gov/dashboard/Campaign/json_status/ Endpoint'
10 Jul 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'd3lla'
b'[javascript] CWE-020: CodeQL query to detect missing origin validation in cross-origin communication via postMessage'
09 Jul 2020
b'Automattic'
disclosed a bug submitted by
b'fuzzme'
b'[tumblr.com] 69< Firefox Only XSS Reflected'
09 Jul 2020
1
...
285
286
287
288
289
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM