REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'pass2_no_dither out-of-bounds access'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'gdImageTrueColorToPaletteBody allows arbitrary write/read access'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'select_colors write out-of-bounds'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'imap_rfc822_parse_headers GS Violation'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'Illegal write/read access caused by gdImageAALine overflow'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'imagescale out-of-bounds read'
31 Oct 2019
b'Grammarly'
disclosed a bug submitted by
b'orlserg'
b'Lack of CSRF header validation at https://g-mail.grammarly.com/profile'
31 Oct 2019
b'Vend'
disclosed a bug submitted by
b'z0idex'
b'Open Redirect in the Path of vendhq.com'
31 Oct 2019
b'Central Security Project'
disclosed a bug submitted by
b'hland'
b'Unrestricted File Upload Leading to Remote Code Execution'
30 Oct 2019
b'Mail.ru'
disclosed a bug submitted by
b'maxarr'
b'touch.mail.ru / e.mail.ru memory content disclosure'
30 Oct 2019
b'Central Security Project'
disclosed a bug submitted by
b'badcode_'
b'OS Command Injection in Nexus Repository Manager 2.x(bypass CVE-2019-5475)'
29 Oct 2019
b'Razer'
disclosed a bug submitted by
b'smalien'
b'Unauthenticated access to sensitive user information'
29 Oct 2019
b'Kartpay'
disclosed a bug submitted by
b'nitrozeus'
b'Referer issue in Kartpay.com'
28 Oct 2019
b'Mail.ru'
disclosed a bug submitted by
b'secator'
b'[XSS] postMessage ? jsapi/button'
28 Oct 2019
b'Weblate'
disclosed a bug submitted by
b'fr0nk'
b'no captcha for register user and weak question attacker can spam email'
26 Oct 2019
b'Zendesk'
disclosed a bug submitted by
b'geeknik'
b'SMTP user enumeration via mail.zendesk.com'
25 Oct 2019
b'Zendesk'
disclosed a bug submitted by
b'nathand'
b'"Test target" of the "HTTP target" extension can unintentionally send username and password in the Authorization header'
25 Oct 2019
b'HackerOne'
disclosed a bug submitted by
b'jobert'
b'Reporter, external users, collaborators can mark sent swag awarded to reporter as unsent'
25 Oct 2019
b'Mail.ru'
disclosed a bug submitted by
b'harisec'
b'Reflected XSS in https://light.mail.ru/login via page'
25 Oct 2019
b'SEMrush'
disclosed a bug submitted by
b'batuhanu'
b'Open redirect in semrush.com'
25 Oct 2019
1
...
315
316
317
318
319
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM