REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'curl'
disclosed a bug submitted by
b'b2x2r'
b'Insecure Frame (External)'
01 Nov 2019
b'Fortmatic Inc.'
disclosed a bug submitted by
b'mr_r0w07'
b'CSRF in generating developer api_key'
01 Nov 2019
b'Twitter'
disclosed a bug submitted by
b'slickrockweb'
b'Viral Direct Message Clickjacking via link truncation leading to capture of both Google credentials & installation of malicious 3rd party Twitter App'
31 Oct 2019
b'Rocket.Chat'
disclosed a bug submitted by
b'w2w'
b'Open redirect open.rocket.chat/file-upload/ID/filename.svg'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'wddx_deserialize allows illegal memory access'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'wddx_deserialize null dereference'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'pass2_no_dither out-of-bounds access'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'gdImageTrueColorToPaletteBody allows arbitrary write/read access'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'select_colors write out-of-bounds'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'imap_rfc822_parse_headers GS Violation'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'Illegal write/read access caused by gdImageAALine overflow'
31 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'fms'
b'imagescale out-of-bounds read'
31 Oct 2019
b'Grammarly'
disclosed a bug submitted by
b'orlserg'
b'Lack of CSRF header validation at https://g-mail.grammarly.com/profile'
31 Oct 2019
b'Vend'
disclosed a bug submitted by
b'z0idex'
b'Open Redirect in the Path of vendhq.com'
31 Oct 2019
b'Central Security Project'
disclosed a bug submitted by
b'hland'
b'Unrestricted File Upload Leading to Remote Code Execution'
30 Oct 2019
b'Mail.ru'
disclosed a bug submitted by
b'maxarr'
b'touch.mail.ru / e.mail.ru memory content disclosure'
30 Oct 2019
b'Central Security Project'
disclosed a bug submitted by
b'badcode_'
b'OS Command Injection in Nexus Repository Manager 2.x(bypass CVE-2019-5475)'
29 Oct 2019
b'Razer'
disclosed a bug submitted by
b'smalien'
b'Unauthenticated access to sensitive user information'
29 Oct 2019
b'Kartpay'
disclosed a bug submitted by
b'nitrozeus'
b'Referer issue in Kartpay.com'
28 Oct 2019
b'Mail.ru'
disclosed a bug submitted by
b'secator'
b'[XSS] postMessage ? jsapi/button'
28 Oct 2019
1
...
361
362
363
364
365
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM