REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Starbucks'
disclosed a bug submitted by
b'apapedulimu'
b'Missing CSRF Token On Add Coupon To Basket'
22 Jan 2019
b'Starbucks'
disclosed a bug submitted by
b'k3m'
b'unuse domain still in using at wechat by Starbucks East China'
22 Jan 2019
b'Weblate'
disclosed a bug submitted by
b'elmahdi'
b'No Rate On Add Suggest'
22 Jan 2019
b'Zomato'
disclosed a bug submitted by
b'sudi'
b'[auth2.zomato.com] Reflected XSS at `oauth2/fallbacks/error` | ORY Hydra an OAuth 2.0 and OpenID Connect Provider'
21 Jan 2019
b'New Relic'
disclosed a bug submitted by
b'niwasaki'
b'WordPress User Enumeration - blog.newrelic.com'
19 Jan 2019
b'Twitter'
disclosed a bug submitted by
b'nyuszika7h'
b'Changing email address on Twitter for Android unsets "Protect your Tweets"'
18 Jan 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'websecnl'
b'SOAP WSDL Parser SQL Code Execution'
16 Jan 2019
b'Dovecot'
disclosed a bug submitted by
b'mikki_khan'
b'command Injection in rawlog binary'
16 Jan 2019
b'Mail.ru'
disclosed a bug submitted by
b'godexmachine'
b'[online.games.mail.ru] - Sensitive information disclosure'
16 Jan 2019
b'Mail.ru'
disclosed a bug submitted by
b'godexmachine'
b'[3k.mail.ru] - Content spoofing'
16 Jan 2019
b'Dropbox'
disclosed a bug submitted by
b'karlito'
b'Disclose anonymous accessible link on embedded files in paper dropbox sessions'
15 Jan 2019
b'Weblate'
disclosed a bug submitted by
b'elmahdi'
b'No Rate Limit On Add new word'
14 Jan 2019
b'RATELIMITED'
disclosed a bug submitted by
b'aty'
b'Line feed injection in get request leads AWS S3 Bucket information disclosure '
14 Jan 2019
b'HackerOne'
disclosed a bug submitted by
b'jobert'
b'Embedded submission form UUIDs can be enumerated through GraphQL node interface, exposing sensitive program details'
11 Jan 2019
b'SEMrush'
disclosed a bug submitted by
b'saya'
b'Persistent CSV injection'
11 Jan 2019
b'SEMrush'
disclosed a bug submitted by
b'prial261'
b'protocol & Ports are not shown in third-party site redirect warning page '
11 Jan 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'mik317'
b'Account takeover due to CSRF in "Account details" option on ?????????'
11 Jan 2019
b'Chaturbate'
disclosed a bug submitted by
b'imran1121'
b'Unsecure Caching Mechanism May Expose users Credit Card Details'
11 Jan 2019
b'Starbucks'
disclosed a bug submitted by
b'debo'
b'SQL Injection Proof of Concept for Starbucks URL'
09 Jan 2019
b'CFP Time'
disclosed a bug submitted by
b'drosofraymaybe'
b'Content spoofing on error pages or text injection'
08 Jan 2019
1
...
370
371
372
373
374
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM