REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
84
b'linkks'
75
b'jobert'
70
b'nyymi'
64
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Ruby on Rails'
disclosed a bug submitted by
b'abuisman'
b'ActionController::Parameters .each returns an unsafe hash'
18 May 2020
b'Open-Xchange'
disclosed a bug submitted by
b'catenacyber'
b'Use after free in smtp_server_connection_handle_command'
18 May 2020
b'Open-Xchange'
disclosed a bug submitted by
b'catenacyber'
b'Null pointer dereference in SMTP server function smtp_string_parse'
18 May 2020
b'Clario'
disclosed a bug submitted by
b'sec0ndw0lf'
b'CORS Misconfiguration, could lead to disclosure of sensitive information (translate.kromtech.com)'
18 May 2020
b'InnoGames'
disclosed a bug submitted by
b'batee5a'
b'Chaining Bugs: Leakage of CSRF token which leads to Stored XSS and Account Takeover (xs1.tribalwars.cash)'
18 May 2020
b'curl'
disclosed a bug submitted by
b'geeknik'
b'Invalid write (or double free) triggers curl command line tool crash'
18 May 2020
b'InnoGames'
disclosed a bug submitted by
b'batee5a'
b'Race condition in activating email resulting in infinite amount of diamonds received'
18 May 2020
b'Clario'
disclosed a bug submitted by
b'dilawer01'
b'Multiple Links Vulnerable to Reflected xss'
17 May 2020
b'Clario'
disclosed a bug submitted by
b'dilawer01'
b'Reflected xss'
17 May 2020
b'Clario'
disclosed a bug submitted by
b'dilawer01'
b'Reflected xss on mackeeper.com'
17 May 2020
b'Clario'
disclosed a bug submitted by
b'dilawer01'
b'open redirect at https://account.mackeeper.com/auth/signin/continue via improper uri sanitization'
17 May 2020
b'MTN Group'
disclosed a bug submitted by
b'miguel_santareno'
b'SharePoint exposed web services in a subdomain'
16 May 2020
b'HackerOne'
disclosed a bug submitted by
b'p4fg'
b'404-response contains debug-information with all headers'
16 May 2020
b'ok.ru'
disclosed a bug submitted by
b'iframe'
b'?????????? CSRF ????? ?? ??????? ???????? ???????.'
15 May 2020
b'HackerOne'
disclosed a bug submitted by
b'amans'
b'Subdomain takeover of resources.hackerone.com'
15 May 2020
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Customer private program can disclose email any users through invited via username'
15 May 2020
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Changes to data in a CVE request after draft via GraphQL query'
15 May 2020
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Rounding errors on rewarding a bounty leads to bypassing the 20% H1 commission fee'
15 May 2020
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'A team member of the program with Report rights can ban the Admin'
15 May 2020
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Mismatch between frontend and backend validation via `ban_researcher` leads to H1 support and hackers email spam'
15 May 2020
1
...
306
307
308
309
310
...
741
BY DENIS WERNER - @NOBBD -
IMPRESSUM
