REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Open-Xchange'
disclosed a bug submitted by
b'logan5'
b'CSRF combined with IDOR within Document Converter exposes files'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS/CSRF] filter content-type bypass in Files'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS/CSRF] filter content-type bypass in Files v2.0'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'pnig0s'
b'Arbitrary local system file read on open-xchange server '
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Mail <style> v2.0'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Style/Event Filter Bypass v3.0'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'rceman'
b'Stored-XSS with user interaction on [sandbox.open-xchange.com] via inserted link in mail'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Pasting bootstrap in mail compose'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'amalyoman'
b'No session expiry after log-out and session id exposed in URL'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] select/onchange in TinyMCE via set body'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Forgot password link'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Parameter Theme '
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Style/Event Filter Bypass v4.0'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'Referer in /servlet/TestServlet'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[SSRF] PDF documentconverterws'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] Portal Widget Mail'
24 Jan 2020
b'Open-Xchange'
disclosed a bug submitted by
b'secator'
b'[XSS] content_disposition=inline in files'
24 Jan 2020
b'Starbucks'
disclosed a bug submitted by
b'moonlight323'
b'Norway - store.starbucks.no - CSRF on email change'
23 Jan 2020
b'Badoo'
disclosed a bug submitted by
b'oo7hacker3'
b'The login of Hotor Not is Vulnerable to bruteforce.'
23 Jan 2020
b'Node.js third-party modules'
disclosed a bug submitted by
b'skyn3t'
b'[klona] Prototype pollution'
23 Jan 2020
1
...
336
337
338
339
340
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
