REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
107
linkks
60
sp1d3rs
56
jobert
46
guido
41
bl4de
39
bigbear_
38
isox
36
geeknik
35
4lemon
35
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
99designs
disclosed a bug submitted by
ashesh
Source Code Disclosure (PHP)
26 Nov 2014
Ruby on Rails
disclosed a bug submitted by
nahamsec
Arbitrary file existence disclosure in Action Pack
20 Nov 2014
Factlink
disclosed a bug submitted by
nahamsec
File name/folder enumeration.
18 Nov 2014
IRCCloud
disclosed a bug submitted by
hari-cybex
Password type input with auto-complete enabled
17 Nov 2014
wont-fix
IRCCloud
disclosed a bug submitted by
hari-cybex
Missing Character Restriction
17 Nov 2014
wont-fix
Twitter
disclosed a bug submitted by
shahriyar
Token remains alive ever after logging out!
17 Nov 2014
wont-fix
The Internet
disclosed a bug submitted by
mik
rsync hash collisions may allow an attacker to corrupt or modify files
17 Nov 2014
Secret
disclosed a bug submitted by
vinothkumar
Broken Authentication and Session Management
17 Nov 2014
Square
disclosed a bug submitted by
cliffordtrigo
XSS [BookFresh]
17 Nov 2014
ExpressionEngine
disclosed a bug submitted by
deadlock
Stored Cross-Site Scripting Vulnerability in /admin.php?/cp/admin_system/general_configuration
17 Nov 2014
Square
disclosed a bug submitted by
cliffordtrigo
XSS in Client Past Activity
17 Nov 2014
Square
disclosed a bug submitted by
avlidienbrunn
CRITICAL Account takeover via AngularJS template injection in connect.squareup.com
17 Nov 2014
Twitter
disclosed a bug submitted by
internetwache
Full path disclosure at ads.twitter.com
17 Nov 2014
Square
disclosed a bug submitted by
cliffordtrigo
Editing Client Details of other People
17 Nov 2014
Twitter
disclosed a bug submitted by
arbitrarycode
ads.twitter.com xss
17 Nov 2014
Square
disclosed a bug submitted by
adrianbelen
malicious file upload
17 Nov 2014
Mavenlink
disclosed a bug submitted by
siddiki
Email field filtering problem.
17 Nov 2014
Sucuri
disclosed a bug submitted by
webpentest
Usage of HTTP for exporting graph data as images
17 Nov 2014
Twitter
disclosed a bug submitted by
batram
XSS platform.twitter.com
17 Nov 2014
HackerOne
disclosed a bug submitted by
shahmeer_amir
No email verification on username change
17 Nov 2014
1
...
315
316
317
318
319
...
350
BY DENIS WERNER - @NOBBD -
IMPRESSUM
