REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Python (IBB)'
disclosed a bug submitted by
b'longwenzhang'
b'A reflected XSS in python/Lib/DocXMLRPCServer.py'
19 Oct 2019
b'Flash (IBB)'
disclosed a bug submitted by
b'jouko'
b'Internet-based attacker can run Flash apps in local sandboxes by using special URL schemes (PSIRT-3299, CVE-2015-3079)'
18 Oct 2019
b'Flash (IBB)'
disclosed a bug submitted by
b'jouko'
b'Flash Player information disclosure (etc.) CVE-2015-3044, PSIRT-3298'
18 Oct 2019
b'Flash (IBB)'
disclosed a bug submitted by
b'jouko'
b'Double free vulnerability in Flash Player Settings Manager (CVE-2015-0346)'
18 Oct 2019
b'Flash (IBB)'
disclosed a bug submitted by
b'irsdl'
b'Flash \xe2\x80\x9clocal-with-filesystem\xe2\x80\x9d Bypass in navigateToURL'
17 Oct 2019
b'MyCrypto'
disclosed a bug submitted by
b'whitehacker18'
b'URL is vulnerable to clickjacking'
17 Oct 2019
b'Rocket.Chat'
disclosed a bug submitted by
b'w2w'
b'Blind SQL injection in third-party software, that allows to reveal user statistic from rocket.chat and possibly hack into the rocketchat.agilecrm.com'
17 Oct 2019
b'Nextcloud'
disclosed a bug submitted by
b'sohelahmed786'
b'Exposing debug.log file leads to server full path disclosure'
17 Oct 2019
b'VK.com'
disclosed a bug submitted by
b'povargek'
b'?????? ????? email ????????????? ???? ???????????? ????? ?????, ? ??? ?? ????? ?????? ????????'
17 Oct 2019
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'Null character at fnmatch'
16 Oct 2019
b'Ruby'
disclosed a bug submitted by
b'ooooooo_q'
b'Potential command injection in `Shell#[]` and `Shell#test`'
16 Oct 2019
b'Starbucks'
disclosed a bug submitted by
b'stealthy'
b'Reflected cross-site scripting on multiple Starbucks assets.'
16 Oct 2019
b'Brave Software'
disclosed a bug submitted by
b'xiaoyinl'
b'[Brave browser] WebTorrent has DNS rebinding vulnerability'
16 Oct 2019
b'Keybase'
disclosed a bug submitted by
b'u3mur4'
b'XSS on Desktop Client'
16 Oct 2019
b'Semmle'
disclosed a bug submitted by
b'testanull'
b'Worker container escape lead to arbitrary file reading in host machine'
16 Oct 2019
b'Slack'
disclosed a bug submitted by
b'virtualhunter'
b'XSS vulnerable parameter in a location hash'
16 Oct 2019
b'Apache httpd (IBB)'
disclosed a bug submitted by
b'cy1337'
b'mod_http2, read-after-free in h2 connection shutdown (CVE-2019-10082)'
15 Oct 2019
b'Apache httpd (IBB)'
disclosed a bug submitted by
b'cy1337'
b'mod_http2, memory corruption on early pushes (CVE-2019-10081)'
15 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'l4w'
b'Use-After-Free / Double-Free in WDDX Deserialize'
15 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'l4w'
b'Type Confusion Vulnerability - SOAP / make_http_soap_request()'
15 Oct 2019
1
...
363
364
365
366
367
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM