REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'OLX'
disclosed a bug submitted by
b'ameytakekar'
b'Reflected XSS on m.olx.co.id via ad_type parameter'
03 Nov 2019
b'PuTTY (European Commission - D'
disclosed a bug submitted by
b'geeknik'
b'puttygen: 160MB memory leak while trying to extract openssh public key from crafted key file'
03 Nov 2019
b'PuTTY (European Commission - D'
disclosed a bug submitted by
b'geeknik'
b'puttygen: heap-buffer-overflow in mp_get_decimal()'
03 Nov 2019
b'PuTTY (European Commission - D'
disclosed a bug submitted by
b'geeknik'
b'heap-use-after-free (READ of size 8) in main()'
03 Nov 2019
b'PuTTY (European Commission - D'
disclosed a bug submitted by
b'geeknik'
b" Assertion `len == 1' failed, process aborted while streaming ouput from remote server"
03 Nov 2019
b'PuTTY (European Commission - D'
disclosed a bug submitted by
b'geeknik'
b"Assertion `col >= 0 && col < line->cols' failed, process aborted while streaming ouput from remote server"
03 Nov 2019
b'WordPress'
disclosed a bug submitted by
b'geeknik'
b'plugins.trac.wordpress.org likely vulnerable to Cross Site Tracing (xst), TRACE HTTP method should be disabled'
03 Nov 2019
b'Dropbox'
disclosed a bug submitted by
b'geeknik'
b'avrecode: global-buffer-overflow in get_neighbor()'
03 Nov 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'wddx_deserialize use-after-free'
03 Nov 2019
b'New Relic'
disclosed a bug submitted by
b'dangkhai'
b'[Bypass] Code injection to open redirect in https://insights.newrelic.com/accounts/2521182/dashboards/1026927'
02 Nov 2019
b'New Relic'
disclosed a bug submitted by
b'specialagent'
b'The impossibility of inclusion of the trial (BROWSER)'
02 Nov 2019
b'Shopify'
disclosed a bug submitted by
b'cablej'
b'H1514 Stored XSS on Wholesale sales channel allows cross-organization data leakage'
01 Nov 2019
b'SEMrush'
disclosed a bug submitted by
b'dangkhai'
b'Code injection in https://www.semrush.com'
01 Nov 2019
b'curl'
disclosed a bug submitted by
b'b2x2r'
b'Active Mixed Content over HTTPS'
01 Nov 2019
b'curl'
disclosed a bug submitted by
b'b2x2r'
b'Insecure Frame (External)'
01 Nov 2019
b'Fortmatic Inc.'
disclosed a bug submitted by
b'mr_r0w07'
b'CSRF in generating developer api_key'
01 Nov 2019
b'Twitter'
disclosed a bug submitted by
b'slickrockweb'
b'Viral Direct Message Clickjacking via link truncation leading to capture of both Google credentials & installation of malicious 3rd party Twitter App'
31 Oct 2019
b'Rocket.Chat'
disclosed a bug submitted by
b'w2w'
b'Open redirect open.rocket.chat/file-upload/ID/filename.svg'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'wddx_deserialize allows illegal memory access'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'wddx_deserialize null dereference'
31 Oct 2019
1
...
314
315
316
317
318
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM