REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
114
geeknik
70
linkks
69
sp1d3rs
61
jobert
50
guido
45
bl4de
41
ryat
40
bigbear_
38
zombiehelp54
37
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
Uber
disclosed a bug submitted by
rohk
Active Email Hyperlink Sent on riders.uber.com
13 Jun 2016
drchrono
disclosed a bug submitted by
sasi2103
XML Parser Bug: XXE over which leads to RCE
13 Jun 2016
drchrono
disclosed a bug submitted by
mugeesahmed
XSS in Blog
13 Jun 2016
drchrono
disclosed a bug submitted by
ahsantahirat
Ngnix Server version disclosure
13 Jun 2016
drchrono
disclosed a bug submitted by
muzammilabbaskayani
Bypassing Password Reset
13 Jun 2016
drchrono
disclosed a bug submitted by
ullger
Bypass password complexity requirements on passsword reset page
13 Jun 2016
drchrono
disclosed a bug submitted by
bashlogic
node.drchrono.com - Information Disclosure and Windows Host Exposed
13 Jun 2016
drchrono
disclosed a bug submitted by
yaworsk
Stored XSS via AngularJS Injection
13 Jun 2016
New Relic
disclosed a bug submitted by
shailesh4594
Open redirection bypass
13 Jun 2016
Moneybird
disclosed a bug submitted by
hackheaven123
Stored XSS in Financial Account executing in Bank tab
13 Jun 2016
New Relic
disclosed a bug submitted by
vikinghoarder
rpm.newrelic.com - monitor creation to other accounts
13 Jun 2016
Moneybird
disclosed a bug submitted by
hackheaven
Malicious File Upload
13 Jun 2016
Moneybird
disclosed a bug submitted by
yaworsk
Employees with Any Permissions Can Create App with Full Permissions and Perform any API Action
13 Jun 2016
Moneybird
disclosed a bug submitted by
trabajoduro
CSV Injection with the CSV export feature
13 Jun 2016
Veris
disclosed a bug submitted by
ashishdhaduk
Security Vulnerability - SMTP protection not used
12 Jun 2016
Veris
disclosed a bug submitted by
aziose
Wordpress Pingback DDoS Attacks in domain: veris.in
12 Jun 2016
Veris
disclosed a bug submitted by
girish_s_pattanashetty
Creating multiple user with the same link which is sent to email after registeration
12 Jun 2016
Veris
disclosed a bug submitted by
itly
Critical - Insecure Direct Object Reference - Deleting any member of any organization remotely
12 Jun 2016
Veris
disclosed a bug submitted by
itly
Critical IDOR - Delete any group of any organization remotely
12 Jun 2016
Veris
disclosed a bug submitted by
itly
Critical IDOR - Delete any venue of any organization remotely
12 Jun 2016
1
...
286
287
288
289
290
...
385
BY DENIS WERNER - @NOBBD -
IMPRESSUM
