REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
79
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
53
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Cloudflare Public Bug Bounty'
disclosed a bug submitted by
b'callmed0_4'
b'Ability to bypass Admin override on Cloudflare WARP Android'
07 Sep 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'leixiao'
b'CVE-2023-40273: Session fixation in Apache Airflow web interface'
04 Sep 2023
b'IBM'
disclosed a bug submitted by
b'tusnj'
b'IDOR in upload videos of a Channel on https://video.ibm.com'
31 Aug 2023
b'HackerOne'
disclosed a bug submitted by
b'abhhinavsecondary'
b"Triager/Team members can edit hacker's report and hacker is not even notified"
31 Aug 2023
b'Mars'
disclosed a bug submitted by
b'dd_06'
b'CSRF to delete a pet'
30 Aug 2023
b'Mars'
disclosed a bug submitted by
b'never_die'
b'Stored XSS + CSRF in "apellido" value'
30 Aug 2023
b'Mars'
disclosed a bug submitted by
b'mo3giza'
b'Response Manipulation lead to bypass verification code while making appointment at `banfield.com`'
30 Aug 2023
b'Mars'
disclosed a bug submitted by
b'ped_baq'
b'Html injection'
30 Aug 2023
b'Mars'
disclosed a bug submitted by
b'ractiurd'
b'Google dork lead to unsubscribe anyone from all Banfield emails'
30 Aug 2023
b'Acronis'
disclosed a bug submitted by
b'cevans_0'
b'Missing brute force protection on login page on www.acronis.com'
30 Aug 2023
b'HackerOne'
disclosed a bug submitted by
b'callmed0_4'
b'IDOR - Delete all Licenses and certifications from users account using CreateOrUpdateHackerCertification GraphQL query'
29 Aug 2023
b'HackerOne'
disclosed a bug submitted by
b'japz'
b'Names not completely redacted despite "Redact the names of the involved users" is selected'
29 Aug 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'shin24'
b'unsanitized input goes to regex function leads to ReDos that make request hangs'
28 Aug 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'yadhukrishnam'
b'HTTP Request Smuggling via Empty headers separated by CR'
28 Aug 2023
b'inDrive'
disclosed a bug submitted by
b'kristoferent'
b'Stored XSS on promo.indrive.com'
28 Aug 2023
b'HackerOne'
disclosed a bug submitted by
b'zerotea'
b'Staff and Triage can modify the initial post of a report, including of already disclosed reports'
28 Aug 2023
b'Automattic'
disclosed a bug submitted by
b'riadalrashed'
b'Entering passwords on the Share Login Page can lead to a brute-force attack'
27 Aug 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'kmhlyxj0'
b'jdbc apache airflow provider code execution vulnerability'
26 Aug 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'kmhlyxj0'
b'odbc apache airflow provider code execution vulnerability'
26 Aug 2023
b'Glassdoor'
disclosed a bug submitted by
b'youstin'
b'Cache Poisoning allows redirection on JS files'
24 Aug 2023
1
2
3
4
5
6
...
673
BY DENIS WERNER - @NOBBD -
IMPRESSUM