REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Parameter Theme '
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Style/Event Filter Bypass v4.0'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'Referer in /servlet/TestServlet'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[SSRF] PDF documentconverterws'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Portal Widget Mail'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] content_disposition=inline in files'
24 Jan 2020
b'Starbucks'
disclosed a bug submitted by
b'moonlight323'
b'Norway - store.starbucks.no - CSRF on email change'
23 Jan 2020
b'Badoo'
disclosed a bug submitted by
b'oo7hacker3'
b'The login of Hotor Not is Vulnerable to bruteforce.'
23 Jan 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'skyn3t'
b'[klona] Prototype pollution'
23 Jan 2020
b'8x8'
disclosed a bug submitted by
b'0xelkomy'
b'Disclosure of Users Information On Wordpress Api [https://jitsi.org/]'
23 Jan 2020
b'Mail.ru'
disclosed a bug submitted by
b'agametov'
b'Boolean-based SQL Injection on relap.io'
22 Jan 2020
b'Lyst'
disclosed a bug submitted by
b'parzel'
b'Subdomain takeover of storybook.lystit.com'
22 Jan 2020
b'Polymail, Inc.'
disclosed a bug submitted by
b'0xskull'
b'Metadata leakage via IDOR'
22 Jan 2020
b'Mapbox'
disclosed a bug submitted by
b'renekroka'
b'Stored XSS | api.mapbox.com | IE 11 | Styles name'
21 Jan 2020
b'MariaDB'
disclosed a bug submitted by
b'hanno'
b'Ubuntu/Debian installation method allows key poisoning and code execution for network attacker'
21 Jan 2020
b'Revive Adserver'
disclosed a bug submitted by
b'jacopotediosi'
b'Reflected XSS on www/delivery/afr.php'
21 Jan 2020
b'GitLab'
disclosed a bug submitted by
b'ooooooo_q'
b'Double linking cause XSS (but blokeced by CSP in gitlab.com)'
20 Jan 2020
b'MobiSystems Ltd.'
disclosed a bug submitted by
b'kickino'
b'open Firebase Database: msdict-dev.firebaseio.com'
20 Jan 2020
b'NordVPN'
disclosed a bug submitted by
b'nickelheck'
b'Open redirect'
18 Jan 2020
b'Bumble'
disclosed a bug submitted by
b'0x3c3e'
b'Bruteforce password recovery code'
18 Jan 2020
1
...
336
337
338
339
340
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM