REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
58
b'ooooooo_q'
52
b'haxta4ok00'
49
b'jon_bottarini'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Publitas'
disclosed a bug submitted by
b'2k_hacker'
b'CORS Misconfiguration on '
31 Jan 2024
b'curl'
disclosed a bug submitted by
b'kurohiro'
b'CVE-2024-0853: OCSP verification bypass with TLS session reuse'
31 Jan 2024
b'Mars'
disclosed a bug submitted by
b'skoll101'
b'Critical Unauthenticated Access to Sensitive Employee and Customer Data Including Invoice Details at '
30 Jan 2024
b'Mars'
disclosed a bug submitted by
b'themarkib0x0'
b'No CSRF protection when adding an item to cart'
30 Jan 2024
b'Mars'
disclosed a bug submitted by
b'xandsz'
b'IDOR to account takeover on POST to by changing member_id parameter'
30 Jan 2024
b'Mars'
disclosed a bug submitted by
b'm3ntor'
b'Sensitive Information Exposed at '
30 Jan 2024
b'Mozilla Critical Services'
disclosed a bug submitted by
b'supr4s'
b'SQL Injection on prod.oidc-proxy.prod.webservices.mozgcp.net via invite_code parameter - Mozilla social inscription'
30 Jan 2024
b'HackerOne'
disclosed a bug submitted by
b'madara_'
b'Server Side Request Forgery (SSRF) in webhook functionality'
30 Jan 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'xer0dayz'
b'CVE-2024-21733 Apache Tomcat HTTP Request Smuggling (Client- Side Desync) (CWE: 444)'
29 Jan 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'tint0'
b'Argo CD CSRF leads to Kubernetes cluster compromise'
29 Jan 2024
b'Internet Bug Bounty'
disclosed a bug submitted by
b'zpbrent'
b'Pickle deserialization vulnerability in XComs'
29 Jan 2024
b'inDrive'
disclosed a bug submitted by
b'maxdha'
b'XSS on terra-6.indriverapp.com'
29 Jan 2024
b'LinkedIn'
disclosed a bug submitted by
b'khaledx'
b'Html injection in event Description '
29 Jan 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'aziz0x48'
b'Time based SQL injection at'
26 Jan 2024
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'ashutosh7'
b'Unauthenticated Jenkins instance exposed information related to '
26 Jan 2024
b'Rockstar Games'
disclosed a bug submitted by
b'bugstar'
b'Exposed CDN access token allows modification of all newly uploaded Snapmatic photos'
26 Jan 2024
b'Mars'
disclosed a bug submitted by
b'callmed0_4'
b'Datadog api keys exposed can be used to do all the read and write access to the instance'
25 Jan 2024
b'Shopify'
disclosed a bug submitted by
b'ssilvass'
b'Reflected XSS on help.shopify.com'
25 Jan 2024
b'Enjin'
disclosed a bug submitted by
b'tushar_rec0n'
b'Lack of Tenant Scoping Enables Limited Cross-Tenant Data Querying and Mutation'
25 Jan 2024
b'Sony'
disclosed a bug submitted by
b'testingforbugs'
b'SQL injection at '
24 Jan 2024
1
...
38
39
40
41
42
...
724
BY DENIS WERNER - @NOBBD -
IMPRESSUM
