REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Stripo Inc'
disclosed a bug submitted by
b'pain45'
b'SSRF & unrestricted file upload on https://my.stripo.email/'
19 Feb 2020
b'Valve'
disclosed a bug submitted by
b'hackerontwowheels'
b'Steam chat - trade offer presentation vulnerability'
19 Feb 2020
b'Razer'
disclosed a bug submitted by
b'fpatrik'
b'Reflected XSS in eform.molpay.com'
18 Feb 2020
b'Razer'
disclosed a bug submitted by
b'0xpegg'
b'Admin Management - Login Using Default Password - Leads to Image Upload Backdoor/Shell'
18 Feb 2020
b'Razer'
disclosed a bug submitted by
b'iamsahana'
b'Payment PIN Verification Bypass'
18 Feb 2020
b'Razer'
disclosed a bug submitted by
b'corraldev'
b'[pay.gold.razer.com] Stored XSS - Order payment'
18 Feb 2020
b'Maker Ecosystem Growth Holding'
disclosed a bug submitted by
b'h4x0rm4n'
b'DoS of https://blog.makerdao.com/ via CVE-2018-6389'
18 Feb 2020
b'Maker Ecosystem Growth Holding'
disclosed a bug submitted by
b'h4x0rm4n'
b'xmlrpc.php FILE IS enable it will used for Bruteforce attack '
18 Feb 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b's_p_q_r'
b'[reveal.js] XSS by calling arbitrary method via postMessage'
18 Feb 2020
b'Mail.ru'
disclosed a bug submitted by
b'johndoe1492'
b'JMX RMI command injection on 195.211.131.82(Mail.ru Gaming)'
18 Feb 2020
b'Mail.ru'
disclosed a bug submitted by
b'orlserg'
b'Race condition ?? ??????? ?????? ?? ?????'
18 Feb 2020
b'Mail.ru'
disclosed a bug submitted by
b'bounty-'
b'Open Redirect'
18 Feb 2020
b'Mail.ru'
disclosed a bug submitted by
b'renekroka'
b'Reflected XSS with WAF Bypass https://pw.mail.ru'
18 Feb 2020
b'Automattic'
disclosed a bug submitted by
b'adhamsadaqah'
b'Stored XSS in wordpress.com'
17 Feb 2020
b'NordVPN'
disclosed a bug submitted by
b'zerody'
b'Potential leak of server side software at repogohi.nordvpn.com'
16 Feb 2020
b'SEMrush'
disclosed a bug submitted by
b'a_d_a_m'
b'CORS misconfiguration which leads to the disclosure of certain data concerning the user.'
15 Feb 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'rhyselsmore'
b'Filesystem Writes via `yarn install` via symlinks and tar transforms inside a crafted malicious package'
15 Feb 2020
b'Mail.ru'
disclosed a bug submitted by
b'rainbow_json'
b"[API] ICQ user's avatar can be manipulated remotely"
14 Feb 2020
b'Mail.ru'
disclosed a bug submitted by
b'rainbow_json'
b'[Web ICQ Client] XSS ?????????? ? ????? ????????????'
14 Feb 2020
b'Mail.ru'
disclosed a bug submitted by
b'rainbow_json'
b'[Web ICQ Client] XSS-inj in polls'
14 Feb 2020
1
...
328
329
330
331
332
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM