REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Shopify'
disclosed a bug submitted by
b'eissen5c'
b'Clickjacking in [exchangemarketplace.com]'
18 Sep 2019
b'VK.com'
disclosed a bug submitted by
b'linkks'
b'Information Disclosure (phpinfo())'
18 Sep 2019
b'VK.com'
disclosed a bug submitted by
b'linkks'
b'????? swag'
18 Sep 2019
b'Mail.ru'
disclosed a bug submitted by
b'obayda'
b'Settings page in https://support.my.com is vulnerable to clickjacking'
18 Sep 2019
b'RSK'
disclosed a bug submitted by
b'ahook'
b'Attacker can add arbitrary data to the blockchain without paying gas'
18 Sep 2019
b'RSK'
disclosed a bug submitted by
b'z3t'
b'DoS through PeerExplorer'
18 Sep 2019
b'Valve'
disclosed a bug submitted by
b'nyancat0131'
b'Unchecked weapon id in WeaponList message parser on client leads to RCE'
17 Sep 2019
b'Valve'
disclosed a bug submitted by
b'nyancat0131'
b'Malformed map detailed texture files in GoldSrc games lead to Remote Code Execution'
17 Sep 2019
b'Valve'
disclosed a bug submitted by
b'nyancat0131'
b'Malformed playlist.txt in GoldSrc games leads to Access Violation & arbitrary code execution'
17 Sep 2019
b'MyCrypto'
disclosed a bug submitted by
b'zeroxyele'
b'The twitter accounts are linked on page but unclaimed.'
17 Sep 2019
b'ICQ'
disclosed a bug submitted by
b'metnew'
b'ICQ for macOS: lack of `com.apple.quarantine` meta-attribute on downloaded files leads to GateKeeper/Quarantine bypass for downloaded executables'
17 Sep 2019
b'Mail.ru'
disclosed a bug submitted by
b'elmahdi'
b'Xss Reflected On spgw.terrhq.ru [ url ]'
16 Sep 2019
b'Keybase'
disclosed a bug submitted by
b'metnew'
b'Keybase client: downloaded executables lack "com.apple.quarantine" meta-attribute [macOS]'
16 Sep 2019
b'WordPress'
disclosed a bug submitted by
b'flimm'
b'antispambot does not always escape <, >, &, " and \''
16 Sep 2019
b'PortSwigger Web Security'
disclosed a bug submitted by
b'skykn0t'
b'Clicking "http://burp" hyperlink on FireFox CA Installation guide redirects to "burp.com" (unclaimed website).'
16 Sep 2019
b'Shopify'
disclosed a bug submitted by
b'wxy7174'
b'?????? DOM XSS via Shopify.API.remoteRedirect'
15 Sep 2019
b'Slack'
disclosed a bug submitted by
b'metnew'
b'User-assisted RCE in Slack for macOS (from official site) due to improper quarantine meta-attribute handling for downloaded files'
14 Sep 2019
b'Maker Ecosystem Growth Holding'
disclosed a bug submitted by
b'nitrozeus0x01'
b'.git file accessible'
13 Sep 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'lightangel1412'
b'[http_server] Stored XSS in the filename when directories listing'
13 Sep 2019
b'Node.js third-party modules'
disclosed a bug submitted by
b'garumpage'
b'gitlabhook OS Command Injection'
13 Sep 2019
1
...
370
371
372
373
374
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM