REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Mapbox'
disclosed a bug submitted by
b'h4ck3d'
b'Reflected XSS via XML Namespace URI on https://go.mapbox.com/index.php/soap/'
15 Apr 2020
b'Mail.ru'
disclosed a bug submitted by
b'act1on3'
b'[fleet.city-mobil.ru] Driver balance increasing'
15 Apr 2020
b'BCM Messenger'
disclosed a bug submitted by
b'c37m'
b'API - Amazon S3 bucket misconfiguration'
14 Apr 2020
b'Coda'
disclosed a bug submitted by
b'0xcrypto'
b'Unrestricted access to any "connected pack" on docs'
14 Apr 2020
b'Mail.ru'
disclosed a bug submitted by
b'r0hack'
b'Leak Sensetive Data at face.city-mobil.ru'
14 Apr 2020
b'Mail.ru'
disclosed a bug submitted by
b'byq'
b'SSRF & LFR via on city-mobil.ru'
14 Apr 2020
b'Maker Ecosystem Growth Holding'
disclosed a bug submitted by
b'losthacker'
b'Blind SSRF at https://chat.makerdao.com/account/profile'
14 Apr 2020
b'Mail.ru'
disclosed a bug submitted by
b'byq'
b'SSRF on fleet.city-mobil.ru leads to local file read'
14 Apr 2020
b'Mail.ru'
disclosed a bug submitted by
b'byq'
b'SSRF & LFR on city-mobil.ru'
14 Apr 2020
b'Maker Ecosystem Growth Holding'
disclosed a bug submitted by
b'0xpegg'
b'[blog.makerdao.com] Multiple Vulnerabilities - Leads to leakage user admin sensitive exposure'
14 Apr 2020
b'Mail.ru'
disclosed a bug submitted by
b'act1on3'
b'[https://city-mobil.ru/taxiserv] Blind XSS into username'
14 Apr 2020
b'Mail.ru'
disclosed a bug submitted by
b'act1on3'
b'[panel.city-mobil.ru/admin/] Blind XSS into username'
14 Apr 2020
b'Legal Robot'
disclosed a bug submitted by
b'aninax'
b'Cloudflare issue: Error 521 Ray ID: 2e7ea7f706ea4056 \xe2\x80\xa2 2016-09-25 12:59:55 UTC Web server is down'
13 Apr 2020
b'8x8'
disclosed a bug submitted by
b'sandrogauci'
b'Outdated Coturn is vulnerable to known vulnerabilities (High)'
13 Apr 2020
b'Topcoder'
disclosed a bug submitted by
b'bonikia97'
b'PII of Users Disclosure using "/members/invite/" endpoint'
13 Apr 2020
b'Stripo Inc'
disclosed a bug submitted by
b'doctor_spooky'
b'Unrestricted File Upload on https://my.stripo.email and https://stripo.email'
13 Apr 2020
b'MTN Group'
disclosed a bug submitted by
b'itsafolic1'
b'Account Take over of millions of MTN users account due to lack of Rate limiting when sending OTP code'
13 Apr 2020
b'Zenly'
disclosed a bug submitted by
b'ticzox'
b'Insecure Storage and Overly Permissive API Keys in Android App'
12 Apr 2020
b'MTN Group'
disclosed a bug submitted by
b'kcz'
b"OTP bypass - Unintended disclosure of OTP to client allows attacker to manage users' subscriptions"
11 Apr 2020
b'BCM Messenger'
disclosed a bug submitted by
b'dedsec69'
b'IDOR leading to downloading of any attachment'
11 Apr 2020
1
...
308
309
310
311
312
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM