REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'HackerOne'
disclosed a bug submitted by
b'jobert'
b'Corrupted Authorization header can cause logs not to be ingested properly in ????????'
04 Apr 2019
b'HackerOne'
disclosed a bug submitted by
b'm7mdharoun'
b'Deprecated Hacker101 coursework repository mentions Heroku App that is susceptible to takeover'
04 Apr 2019
b'Shopify'
disclosed a bug submitted by
b'zombiehelp54'
b'H1514 Server Side Template Injection in Return Magic email templates?'
04 Apr 2019
b'Shopify'
disclosed a bug submitted by
b'zhurig'
b'SSRF in hatchful.shopify.com'
04 Apr 2019
b'Shopify'
disclosed a bug submitted by
b'h13-'
b'Using GraphQL, STAFF with NO explicit permissions on Store can retrieve Shopify Payments Balance.'
04 Apr 2019
b'Starbucks'
disclosed a bug submitted by
b'damian89'
b'SSRF at ideas.starbucks.com'
03 Apr 2019
b'Monero'
disclosed a bug submitted by
b'thanhb'
b'Unauthorized access of Monero wallet by an unprivileged process'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'chalker'
b'typeorm does not properly escape parameters when building SQL queries, resulting in potential SQLi'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'chalker'
b'`useragent` is vulnerable to ReDoS in user-agent string'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'max'
b'Arbitrary file overwrites in `node-tar`'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'dienpv'
b'Prototype pollution attack (smart-extend)'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'bl4de'
b'[servey] Path Traversal allows to retrieve content of any file with extension from remote server'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'webtonull'
b'Media parsing in canvas is at least vulnerable to Denial of Service through multiple vulnerabilities'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'bl4de'
b'[statics-server] Path Traversal due to lack of provided path sanitization'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'danny_grander'
b'Regular Expression Denial of Service (ReDoS)'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'tiblu'
b'Remote code executio in NPM package getcookies'
03 Apr 2019
b'Rockstar Games'
disclosed a bug submitted by
b'jtjisgod'
b'Open redirect vulnerability'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'cris_semmle'
b'Code Injection Vulnerability in dot Package'
03 Apr 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'asgerf'
b'Prototype pollution attack through jQuery $.extend'
02 Apr 2019
b'Mail.ru'
disclosed a bug submitted by
b'ruvlol'
b'XXE on pulse.mail.ru'
02 Apr 2019
1
...
360
361
362
363
364
...
691
BY DENIS WERNER - @NOBBD -
IMPRESSUM