REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'LifeOmic'
disclosed a bug submitted by
b'base_64'
b'open redirect while login at https://apps.dev.jupiterone.io can leak access code.'
06 Jan 2020
b'LifeOmic'
disclosed a bug submitted by
b'zsbappa'
b'Improper signup & sign-in validation '
06 Jan 2020
b'NordVPN'
disclosed a bug submitted by
b'shardulb_23'
b'xmlrpc.php FILE IS enable it will used for Bruteforce attack and Denial of Service(DoS)'
06 Jan 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'ermilov'
b'[express-laravel-passport] Improper Authentication'
04 Jan 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'ermilov'
b'[atlasboard-atlassian-package] Cross-site Scripting (XSS)'
04 Jan 2020
b'Coda'
disclosed a bug submitted by
b'fisher'
b'Lack or Origin check leads to Cross-Site Websocket Hijacking (CSWSH)'
04 Jan 2020
b'Evernote'
disclosed a bug submitted by
b'renekroka'
b'Reflected + Stored XSS - https://discussion.evernote.com'
03 Jan 2020
b'Intel Corporation'
disclosed a bug submitted by
b'kushal89shah'
b'[FG-VD-19-009] Intel(R) Trace Analyzer and Collector 2019 Memory Corruption Vulnerability Notification'
02 Jan 2020
b'Coda'
disclosed a bug submitted by
b'stefanofinding'
b"Use Github pack with Coda employee github account (search code of Coda's private repositories)"
02 Jan 2020
b'PUBG'
disclosed a bug submitted by
b'renekroka'
b'RXSS to Stored XSS - forums.pubg.com | URL parameter'
02 Jan 2020
b'Rocket.Chat'
disclosed a bug submitted by
b'sectex'
b'XSS (leads to arbitrary file read in Rocket.Chat-Desktop)'
02 Jan 2020
b'Rocket.Chat'
disclosed a bug submitted by
b'ant_pyne'
b'Clickjacking in the admin page'
02 Jan 2020
b'Shopify'
disclosed a bug submitted by
b'jmp_35p'
b'Add store to new partner account without confirming email address.'
02 Jan 2020
b'Mail.ru'
disclosed a bug submitted by
b'flawwan'
b'HTTP-Response-Splitting leads to information disclosure (email, firstname, lastname) at https://tz.mail.ru'
01 Jan 2020
b'Twitter'
disclosed a bug submitted by
b'jaka_tingkir'
b'protected Tweet settings overwritten by other settings'
01 Jan 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'luizviana'
b'[seeftl] Stored XSS when directory listing via filename.'
31 Dec 2019
b'Genasys Technologies'
disclosed a bug submitted by
b'rreiss'
b'Missing redaction on a disclosed report'
31 Dec 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'ermilov'
b'[webpack-bundle-analyzer] Cross-site Scripting'
30 Dec 2019
b'VK.com'
disclosed a bug submitted by
b'0x3c3e'
b'Clickjacking vkpay'
30 Dec 2019
b'Starbucks'
disclosed a bug submitted by
b'vinothkumar'
b'JumpCloud API Key leaked via Open Github Repository.'
30 Dec 2019
1
...
294
295
296
297
298
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM