REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'GitLab'
disclosed a bug submitted by
b'rpadovani'
b'GraphQL query "namespace" leaks data'
03 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'00utsav00'
b'http://????/data.json showing users sensitive information via json file'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'hexdump'
b'[Partial] SSN & [PII] exposed through iPERMs Presentation Slide.'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'usamasood'
b'[?????] \xe2\x80\x94 DOM-based XSS on endpoint `/?s=`'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'pirateducky'
b'Information disclousure by clicking on the link shown in http://????????/'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'alyssa_herrera'
b'PII leakage due to scrceenshot of health records'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'sp1d3rs'
b'Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://???'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'cdl'
b'[CVE-2019-11510 ] Path Traversal on ???????? leads to leaked passwords, RCE, etc'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'alyssa_herrera'
b'Pulse Secure File disclosure, clear text and potential RCE'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jarvis7'
b'[?????] Reflected GET XSS (/personnel.php?...&rcnum=*) with mouse action'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jarvis7'
b'[????????] Boolean SQL Injection (/personnel.php?content=profile&rcnum=*)'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jarvis7'
b'[??????] Reflected GET XSS (/personnel.php?..&folder=*) with mouse action'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jarvis7'
b'[???????] Reflected GET XSS (/mission.php?...&missionDate=*)'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'alyssa_herrera'
b'?????????? bruteforceable RIC Codes allowing information on contracts '
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'alyssa_herrera'
b'Email PII disclosure due to Insecure Password Reset field'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jarvis7'
b'[????????] Reflected XSS'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jarvis7'
b'[?????] Get all tickets (IDOR)'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jarvis7'
b'[???] SQL injection & Reflected XSS'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'd0nut'
b'XSS on www.?????? alerts and a number of other pages'
02 Dec 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b't-pwn'
b'Server-Side Request Forgery (SSRF)'
02 Dec 2019
1
...
300
301
302
303
304
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM