REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Nextcloud'
disclosed a bug submitted by
b'foobar7'
b'Server-Side request forgery in New-Subscription feature of the calendar app'
12 Dec 2019
b'Avito'
disclosed a bug submitted by
b'hussain_0x3c'
b'CSS injection in avito.ru via IE11 '
12 Dec 2019
b'OLX'
disclosed a bug submitted by
b'kishoretrommer'
b'Bypass Rejected ads so user can view it as normal live ad.'
11 Dec 2019
b'Shopify'
disclosed a bug submitted by
b'vulnh0lic'
b'Shopify Stocky App OAuth Misconfiguration'
11 Dec 2019
b'GitLab'
disclosed a bug submitted by
b'ajxchapman'
b'Importing GitLab project archives can replace uploads of other users'
11 Dec 2019
b'VK.com'
disclosed a bug submitted by
b'qwe'
b'????-?????????? ? ????????? ??????'
10 Dec 2019
b'WordPress'
disclosed a bug submitted by
b'md15ev'
b'Stored XSS on Wordpress 5.3 via Title Post'
10 Dec 2019
b'Shopify'
disclosed a bug submitted by
b'chj2934'
b'XSS on product comments in transfers'
09 Dec 2019
b'PUBG'
disclosed a bug submitted by
b'sr007'
b'I found Reflected XSS(Cross site scripting) on your subdomain lite.pubg.com'
09 Dec 2019
b'PUBG'
disclosed a bug submitted by
b'0xfabiof'
b'Reflected XSS in pubg.com'
09 Dec 2019
b'OWOX, Inc.'
disclosed a bug submitted by
b'obito_ms'
b'The URL in "Choose a data source\'\' at "https://bi.owox.com/ui/settings/connected-services/setup/" is not filtered => reflected XSS.'
09 Dec 2019
b'OWOX, Inc.'
disclosed a bug submitted by
b'obito_ms'
b'Reflected XSS '
09 Dec 2019
b'Unikrn'
disclosed a bug submitted by
b'albatraoz'
b'Staging Rabbitmq instance is exposed to the internet with default credentials'
09 Dec 2019
b'Omise'
disclosed a bug submitted by
b'd3tonator'
b'Failure to Invalid Session after Password Change'
08 Dec 2019
b'Twitter'
disclosed a bug submitted by
b'c00lbugs'
b'XSS on https://app.mopub.com/reports/custom/add/ [new-d1]'
07 Dec 2019
b'Nextcloud'
disclosed a bug submitted by
b'cwave'
b'CSRF vulnerability that allows an attacker to modify encryption settings'
07 Dec 2019
b'Polymail, Inc.'
disclosed a bug submitted by
b'kunal94'
b'XSPA on API service endpoint'
07 Dec 2019
b'HackerOne'
disclosed a bug submitted by
b'japz'
b'Information Disclosure when /invitations/<token>.json is not yet accepted'
06 Dec 2019
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Session hijacking attack'
06 Dec 2019
b'concrete5'
disclosed a bug submitted by
b'arcturian'
b'Unauthenticated reflected XSS in preview_as_user function'
06 Dec 2019
1
...
339
340
341
342
343
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM