REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
58
b'ooooooo_q'
52
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Mail.ru'
disclosed a bug submitted by
b'asdqwedev'
b'Stored XSS at branded site in .mail.ru domain'
10 Mar 2020
b'Mail.ru'
disclosed a bug submitted by
b'r0hack'
b'Account TakeOver through password recovery at am.ru'
10 Mar 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'mik317'
b'[blamer] RCE via insecure command formatting'
10 Mar 2020
b'HackerOne H1P BBP1'
disclosed a bug submitted by
b'bencode'
b'Testing'
10 Mar 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'whoareme'
b'Server-Side Request Forgery (SSRF) in Ghost CMS '
09 Mar 2020
b'JamieWeb'
disclosed a bug submitted by
b'mahendra00'
b'HTTP Request Smuggling'
09 Mar 2020
b'Nextcloud'
disclosed a bug submitted by
b'todayisnew'
b'http://www.nextcloud.com/wp-includes/js/swfupload/swfupload.swf allows open redirect / site defacement'
07 Mar 2020
b'Nextcloud'
disclosed a bug submitted by
b'n00bsec'
b'Blind Stored XSS on iOS App due to Unsanitized Webview'
07 Mar 2020
b'Node.js'
disclosed a bug submitted by
b'erubinson'
b'HTTP request smuggling using malformed Transfer-Encoding header'
07 Mar 2020
b'Nextcloud'
disclosed a bug submitted by
b'emilvirkki'
b'Remote code execution via path traversal in Zip extraction in the Extract app'
07 Mar 2020
b'Visma Bug Bounty Program'
disclosed a bug submitted by
b'agnidevan'
b'A non-administrator user can change his email even when it is restricted by an administrator'
06 Mar 2020
b'Visma Bug Bounty Program'
disclosed a bug submitted by
b'mrmj777'
b'Administration page visible without authentication'
06 Mar 2020
b'Mail.ru'
disclosed a bug submitted by
b'n4sty'
b'[api.pandao.ru] IDOR for order delivery address'
06 Mar 2020
b'Mail.ru'
disclosed a bug submitted by
b'n4sty'
b'[pandao.ru] possibility to attach arbitrary phone number to account registered via social network'
06 Mar 2020
b'Mail.ru'
disclosed a bug submitted by
b'danila'
b'Access to Tarantool'
05 Mar 2020
b'Greenhouse.io'
disclosed a bug submitted by
b'hacker2202'
b'Subdomain Takeover on demo.greenhouse.io pointing to unbouncepages'
05 Mar 2020
b'Razer'
disclosed a bug submitted by
b'so_h1'
b'[press.razer.com] Origin IP found, Cloudflare bypassed'
04 Mar 2020
b'Razer'
disclosed a bug submitted by
b'jackb898'
b'Subdomain takeover at ftp.thx.com'
04 Mar 2020
b'Razer'
disclosed a bug submitted by
b's3cr3tsdn'
b'SQLi at https://sea-web.gold.razer.com/demo-th/purchase-result.php via orderid Parameter'
04 Mar 2020
b'Razer'
disclosed a bug submitted by
b'zelzal'
b'Aws bucket writable mobile.razer.com'
04 Mar 2020
1
...
316
317
318
319
320
...
732
BY DENIS WERNER - @NOBBD -
IMPRESSUM