REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
58
b'ooooooo_q'
52
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Liberapay'
disclosed a bug submitted by
b'harrisoft'
b'Leaking Of Sensitive Information on Github'
03 Apr 2020
b'MTN Group'
disclosed a bug submitted by
b'miguel_santareno'
b'Information Disclosure Microsoft IIS Server service.cnf in a mtn website'
03 Apr 2020
b'MTN Group'
disclosed a bug submitted by
b'miguel_santareno'
b'Information Disclosure FrontPage Configuration Information /_vti_inf.html in https://www.mtn.co.za/'
03 Apr 2020
b'NordVPN'
disclosed a bug submitted by
b'bihari_web'
b'Denial of Service with Cookie Bomb'
03 Apr 2020
b'NordVPN'
disclosed a bug submitted by
b'eliterevenger'
b'Arbitrary Set-Cookie via "?coupon=" due to semi-colon not encoded'
03 Apr 2020
b'Shopify'
disclosed a bug submitted by
b'davscol94'
b'xss stored'
03 Apr 2020
b'Maker Ecosystem Growth Holding'
disclosed a bug submitted by
b'th3cyb3rc0p'
b'load scripts DOS vulnerability'
02 Apr 2020
b'Open-Xchange'
disclosed a bug submitted by
b'catenacyber'
b'Buffer overread in parse_angle_addr called from message_address_parse_path '
02 Apr 2020
b'SEMrush'
disclosed a bug submitted by
b'ziko_amazigh'
b'Reflected XSS on https://www.semrush.com/my_reports/externalSource/callback/googleAccountsGMB'
02 Apr 2020
b'Vanilla'
disclosed a bug submitted by
b'vivek111'
b' XSS through chat messages'
02 Apr 2020
b'SEMrush'
disclosed a bug submitted by
b'a_d_a_m'
b'IDOR in marketing calendar tool'
02 Apr 2020
b'SEMrush'
disclosed a bug submitted by
b'yashrs'
b'An attacker can buy marketplace articles for lower prices as it allows for negative quantity values leading to business loss'
02 Apr 2020
b'SEMrush'
disclosed a bug submitted by
b'nikitastupin'
b'Content Injection on api.semrush.com to Reflected XSS'
02 Apr 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'sontungatm'
b'[utils-extend] Prototype pollution '
02 Apr 2020
b'Slack'
disclosed a bug submitted by
b'jhancock'
b'Relative Path Vulnerability Results in Arbitrary Command Execution/Privilege Escalation'
01 Apr 2020
b'Razer'
disclosed a bug submitted by
b'sambal0x'
b'[Razer Pay] Broken Access Control at /v1/verifyPhone/ allows enumeration of usernames and ID information'
01 Apr 2020
b'Razer'
disclosed a bug submitted by
b'p3rr0'
b'Access to support tickets and payment history, impersonate razer support staff'
01 Apr 2020
b'Shopify'
disclosed a bug submitted by
b'ngalog'
b'[Part II] Email Confirmation Bypass in myshop.myshopify.com that Leads to Full Privilege Escalation'
01 Apr 2020
b'Shopify'
disclosed a bug submitted by
b'ngalog'
b'Email Confirmation Bypass in myshop.myshopify.com that Leads to Full Privilege Escalation to Any Shop Owner by Taking Advantage of the Shopify SSO'
01 Apr 2020
b'Shopify'
disclosed a bug submitted by
b'ngalog'
b'Able to Takeover Merchants Accounts Even They Have Already Setup SSO, After Bypassing the Email Confirmation'
01 Apr 2020
1
...
307
308
309
310
311
...
730
BY DENIS WERNER - @NOBBD -
IMPRESSUM
