REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'The Internet'
disclosed a bug submitted by
b'geeknik'
b'CVE-2017-10965: Null pointer dereference in Irssi <1.0.4 '
04 Oct 2019
b'The Internet'
disclosed a bug submitted by
b'geeknik'
b'CVE-2017-5969: libxml2 when used in recover mode, allows remote attackers to cause a denial of service (NULL pointer dereference)'
04 Oct 2019
b'The Internet'
disclosed a bug submitted by
b'geeknik'
b'Denial of service in libxml2, using malicious lzma file to consume available system memory'
04 Oct 2019
b'Rockstar Games'
disclosed a bug submitted by
b'geeknik'
b'full path disclosure on www.rockstargames.com via apache filename brute forcing'
04 Oct 2019
b'Tor'
disclosed a bug submitted by
b'geeknik'
b'Use of unitialized value in token_check_object (src/or/parsecommon.c:224)'
04 Oct 2019
b'PHP (IBB)'
disclosed a bug submitted by
b'geeknik'
b'Use after free with assign by ref to overloaded objects'
04 Oct 2019
b'The Internet'
disclosed a bug submitted by
b'geeknik'
b'pngcrush double-free/segfault could result in DoS (CVE-2015-7700)'
04 Oct 2019
b'The Internet'
disclosed a bug submitted by
b'geeknik'
b'pngcrush_measure_idat() off-by-one error (CVE-2015-2158)'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'karimrahal'
b'[REMOTE] Full Account Takeover At https://??????????????/CAS/'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'twicedi'
b'Path traversal on ????????'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'jin'
b'XXE in DoD website that may lead to RCE'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'cdl'
b'IDOR on DoD Website exposes FTP users and passes linked to all accounts!'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'manoelt'
b'Remote Code Execution (RCE) in a DoD website'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'lfb'
b' SQL injections'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'sp1d3rs'
b'SQL injection on the https://????/'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'sp1d3rs'
b'SQL Injection in the get_publications.php on the https://?????'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'sp1d3rs'
b'[Critical] Full local fylesystem access (LFI/LFD) as admin via Path Traversal in the misconfigured Java servlet on the https://???/'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'nahamsec'
b'LFI with potential to RCE on ?????? using CVE-2019-3396'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'sp1d3rs'
b'[Critical] Possibility to takeover any user account #2 without interaction on the https://??????????'
04 Oct 2019
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'deputy'
b'?????? Authenticated User Data Disclosure'
04 Oct 2019
1
...
371
372
373
374
375
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM