REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Clario'
disclosed a bug submitted by
b'inf0seq'
b'Lack of HTTPS in service communications'
23 May 2020
b'Clario'
disclosed a bug submitted by
b'inf0seq'
b'Reflected XSS'
23 May 2020
b'Clario'
disclosed a bug submitted by
b'inf0seq'
b'Unauthenticated Reflected Cross-Site Scripting on https://account.mackeeper.com/signin page'
23 May 2020
b'Nextcloud'
disclosed a bug submitted by
b'skewbed'
b'XSS in PDF Viewer'
23 May 2020
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Disclosure of the name of a program that has a private part with an external link'
22 May 2020
b'Glassdoor'
disclosed a bug submitted by
b'parzel'
b'Reflected XSS on https://www.glassdoor.com/employers/sem-dual-lp/'
22 May 2020
b'NordVPN'
disclosed a bug submitted by
b'r3ggi-on-h1'
b'Vulnerabilities chain leading to privilege escalation'
22 May 2020
b'DigitalOcean'
disclosed a bug submitted by
b'adiosmf'
b'Unauthorized access to https://shipit.analogpond.com/'
22 May 2020
b'NordVPN'
disclosed a bug submitted by
b'martinbydefault'
b'User data not anonymized is sent to analytics server'
22 May 2020
b'WordPress'
disclosed a bug submitted by
b'hoangkien1020'
b"Improper Access Control in Buddypress core allows reply,delete any user's activity"
22 May 2020
b'WordPress'
disclosed a bug submitted by
b'hoangkien1020'
b'Allow authenticated users can edit, trash,and add new in BuddyPress Emails function'
22 May 2020
b'WordPress'
disclosed a bug submitted by
b'hoangkien1020'
b'CSRF in Profile Fields allows deleting any field in BuddyPress'
22 May 2020
b'WordPress'
disclosed a bug submitted by
b'hoangkien1020'
b'Privilege Escalation in BuddyPress core allows Moderate to Administrator '
22 May 2020
b'Alibaba BBP'
disclosed a bug submitted by
b'testert1ng'
b'SSRF / Arbitrary File Read on Alibaba Cloud Academy'
21 May 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'mayaseven'
b'Pixel flood attack cause the javascript heap out of memory'
21 May 2020
b'Top Echelon Software'
disclosed a bug submitted by
b'darkshadow1733'
b'able to login into login.topechelon.com'
20 May 2020
b'Open-Xchange'
disclosed a bug submitted by
b'mnordhoff'
b'Recursor accepts unsigned, empty NXDOMAINs in secure zones'
20 May 2020
b'Visma Public'
disclosed a bug submitted by
b'm0chan'
b'Arbitrary File Upload to Stored XSS'
20 May 2020
b'PayPal'
disclosed a bug submitted by
b'linkks'
b'Reflected XSS at https://www.paypal.com/ppcreditapply/da/us'
19 May 2020
b'Starbucks'
disclosed a bug submitted by
b'nnez'
b'Thailand - IDOR on www.starbuckscardth.in.th: A logged in user could view any Thailand Starbucks card balance if they knew that Starbucks card number'
19 May 2020
1
...
297
298
299
300
301
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM