REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
114
linkks
75
geeknik
72
sp1d3rs
63
jobert
57
netfuzzer
47
guido
45
bl4de
42
ryat
40
bigbear_
38
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
DigitalSellz
disclosed a bug submitted by
sameoldstory
Access to Amazon S3 bucket
27 Nov 2016
DigitalSellz
disclosed a bug submitted by
robin_linus
Public profile is vulnerable to stored XSS / Facebook Token can be stolen
27 Nov 2016
DigitalSellz
disclosed a bug submitted by
skorov
AWS Signature Disclosure in www.digitalsellz.com allows FULL access to Amazon S3
27 Nov 2016
Ubiquiti Networks
disclosed a bug submitted by
fransrosen
Subdomain takeover on partners.ubnt.com due to non-used CloudFront DNS entry
27 Nov 2016
Algolia
disclosed a bug submitted by
eboda
Unauthorized team members can leak information and see all API calls through /1/admin/* endpoints, even after they have been removed.
27 Nov 2016
Harvest
disclosed a bug submitted by
eboda
XSS on expenses attachments
27 Nov 2016
Ubiquiti Networks
disclosed a bug submitted by
shubham
Stored XSS in unifi.ubnt.com
26 Nov 2016
Harvest
disclosed a bug submitted by
bugdiscloseguys
Editing a project (LIMITED)
26 Nov 2016
ownCloud
disclosed a bug submitted by
rhinosecuritylabs
SMB User Authentication Bypass and Persistence
26 Nov 2016
Nextcloud
disclosed a bug submitted by
bm_666
xss on demo.nextcloud.com due to outdated version
26 Nov 2016
QIWI
disclosed a bug submitted by
kxyry
[qiwi.com] Oauth ?????? ????????
26 Nov 2016
Snapchat
disclosed a bug submitted by
marwan
Bypassing "You've requested your data the maximum number of times today." + "Please Verify an email address with snapchat to continue"
25 Nov 2016
drchrono
disclosed a bug submitted by
yaworsk
Angular injection in the profile name of onpatient
25 Nov 2016
drchrono
disclosed a bug submitted by
yaworsk
User with no permissions can access full wdcalendar feed
25 Nov 2016
drchrono
disclosed a bug submitted by
yaworsk
User with no permissions can create, edit, delete favorite prescriptions /erx/
25 Nov 2016
Pornhub
disclosed a bug submitted by
mikkz
[IDOR] Deleting other users comment
24 Nov 2016
Ian Dunn
disclosed a bug submitted by
ravenbugbounty
No CAPTCHA ia exist in pages
23 Nov 2016
ownCloud
disclosed a bug submitted by
fbogner
Arbitrary Code Injection in ownCloud’s Windows Client
23 Nov 2016
Pushwoosh
disclosed a bug submitted by
cyriac
Read Application Name , Subscribers Count
23 Nov 2016
Slack
disclosed a bug submitted by
narendrabhati
Stored XSS(Cross Site Scripting) In Slack App Name
22 Nov 2016
1
...
308
309
310
311
312
...
448
BY DENIS WERNER - @NOBBD -
IMPRESSUM
