REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Genasys Technologies'
disclosed a bug submitted by
b'roottusk'
b'Login Bypass to OTP Enumeration'
28 Nov 2019
b'Lob'
disclosed a bug submitted by
b'painreigns'
b'HTTP Request Smuggling on vpn.lob.com'
27 Nov 2019
b'GitLab'
disclosed a bug submitted by
b'jobert'
b'Project Template functionality can be used to copy private project data, such as repository, confidential issues, snippets, and merge requests'
27 Nov 2019
b'WakaTime'
disclosed a bug submitted by
b'rashedhasan007'
b'previous token can be reused for verifying same email address '
27 Nov 2019
b'Nextcloud'
disclosed a bug submitted by
b'leonklingele'
b'Nextcloud domain and name of every user leaked to lookup server'
26 Nov 2019
b'QIWI'
disclosed a bug submitted by
b'pisarenko'
b'????????? ?????????????? ?????????? composer.lock docker-compose.yml '
26 Nov 2019
b'Mail.ru'
disclosed a bug submitted by
b'pss_xss'
b'Reflected XSS on https://go.mail.ru/search?fr=mn&q=<payload>'
25 Nov 2019
b'Mail.ru'
disclosed a bug submitted by
b'almaco'
b'XSS via message subject - mobile application'
25 Nov 2019
b'Kaspersky'
disclosed a bug submitted by
b'palant'
b'Chrome extension: Websites can uninstall browser extensions'
25 Nov 2019
b'Kaspersky'
disclosed a bug submitted by
b'palant'
b'Override links for certificate warnings and similar UI are predictable'
25 Nov 2019
b'Kaspersky'
disclosed a bug submitted by
b'palant'
b"Kaspersky Password Manager allows websites to access user's address data"
24 Nov 2019
b'Kaspersky'
disclosed a bug submitted by
b'palant'
b"[Firefox and Chrome browser integration] Websites can hijack Kaspersky's command interface"
24 Nov 2019
b'Kaspersky'
disclosed a bug submitted by
b'palant'
b"[No browser integration] Websites can hijack Kaspersky's command interface"
24 Nov 2019
b'Kaspersky'
disclosed a bug submitted by
b'palant'
b"[IE browser integration] Websites can hijack Kaspersky's command interface"
24 Nov 2019
b'Razer'
disclosed a bug submitted by
b'enesdexh1'
b'DOM XSS at https://www.thx.com in IE/Edge browser'
23 Nov 2019
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Team object in GraphQL disclosed of private programs via the industry'
23 Nov 2019
b'ZEIT'
disclosed a bug submitted by
b'caesareg'
b'Unauthorized admission to any team in zeit.co'
23 Nov 2019
b'Nextcloud'
disclosed a bug submitted by
b'guilhermecruzdev'
b'The password recovery let users know whether an email address exists or not in the website'
22 Nov 2019
b'GitLab'
disclosed a bug submitted by
b'8ayac'
b'DoS attack via comment on Issue'
21 Nov 2019
b'Badoo'
disclosed a bug submitted by
b'nazmul7462'
b'Reflected XSS'
21 Nov 2019
1
...
303
304
305
306
307
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM