REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Shopify'
disclosed a bug submitted by
b'flashdisk'
b'User with removed manage shops permissions is still able to make changes to a shop '
12 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'CSRF Vulnerability on https://signin.rockstargames.com/tpa/facebook/link/'
12 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Image Injection on www.rockstargames.com/screenshot-viewer/responsive/image may allow facebook oauth token theft.'
12 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Information Disclosure in https://www.rockstargames.com/search'
11 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Warehouse dom based xss may lead to Social Club Account Taker Over.'
11 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'Open redirect in https://www.rockstargames.com/GTAOnline/restricted-content/agegate/form may lead to Facebook OAuth token theft'
11 Jun 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'someonenobbd'
b'CodeQL query for SpEL injections'
11 Jun 2020
b'GitHub Security Lab'
disclosed a bug submitted by
b'someonenobbd'
b'Java: CWE-297 Insecure JavaMail SSL configuration'
11 Jun 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'ahmd_halabi'
b'CSRF - Close Account'
11 Jun 2020
b'Rockstar Games'
disclosed a bug submitted by
b'netfuzzer'
b'DOM XSS on https://www.rockstargames.com/GTAOnline/feedback'
11 Jun 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'dhakal_ananda'
b'Account takeover through CSRF in http://???????/??????????/default.asp'
11 Jun 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'pvm'
b'SSN is exposed on slides, previous critical report was not fixed in an appropriate way'
11 Jun 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'ahmd_halabi'
b'CSRF - Modify Company Info'
11 Jun 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'pvm'
b'Tomcat examples available for public, Disclosure Apache Tomcat version, Critical/High/Medium CVE'
11 Jun 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'natanalves01001'
b'Reflected XSS and HTML Injectionon a DoD website'
11 Jun 2020
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'un4gi'
b'Unrestricted File Upload to ???????SubmitRequest/Index.cfm?fwa=wizardform'
11 Jun 2020
b'Vanilla'
disclosed a bug submitted by
b'krishnaverma'
b'Making further registrations difficult on Vanilla forum'
11 Jun 2020
b'Clario'
disclosed a bug submitted by
b'm_4_l_l_0_k'
b'Multiple Information Disclosure with Go PPROF on api-ne.mackeeper.com'
11 Jun 2020
b'Node.js'
disclosed a bug submitted by
b'cdpython'
b'loader.js is not secure'
11 Jun 2020
b'Clario'
disclosed a bug submitted by
b'jin0ne'
b'Open redirect on https://account.mackeeper.com'
10 Jun 2020
1
...
292
293
294
295
296
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM