REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Imgur'
disclosed a bug submitted by
b'kiyell'
b'Go.imgur.com can be used to phish for account information'
21 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'encrypt'
b'CSRF in cancel group and private show requests'
21 Sep 2018
b'GitLab'
disclosed a bug submitted by
b'phillycheeze'
b'Persistent XSS - Deleting a project (No Longer Vulnerable in 10.7)'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'mikkz'
b'Users may still able to view chat room panel of password protected rooms'
20 Sep 2018
b'OpenSSL (IBB)'
disclosed a bug submitted by
b'guido'
b'Client DoS due to large DH parameter (CVE-2018-0732)'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'imrannissar'
b'Forget password link not expiring after email change.'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'gujjuboy10x00'
b'Login form on non-HTTPS page on http://stream.highwebmedia.com/auth/login/'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'memon'
b'Web cache deception attack - expose token information'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'ninjan'
b'Homograph attack on redirect URL (https://chaturbate.com/external_link/?url)'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'ninjan'
b'CSV Injection with the CSV export feature'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'ninjan'
b'Blind SSRF on image proxy camo.stream.highwebmedia.com'
20 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'inhibitor181'
b'Open redirect in securegatewayaccess.com / secure.chaturbate.com via prejoin_data parameter'
19 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'nahamsec'
b"CSS Injection on /embed/ via bgcolor parameter leaks user's CSRF token and allows for XSS "
19 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'nahamsec'
b'Stored XSS against all Chaturbate users using an application name'
19 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'nahamsec'
b'Reflected XSS on ssl-ccstatic.highwebmedia.com via player.swf'
19 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'corb3nik'
b'[chaturbate.com] - CSRF Vulnerability on image upload'
19 Sep 2018
b'Chaturbate'
disclosed a bug submitted by
b'jolteon'
b'Account Takeover via billing'
19 Sep 2018
b'Shopify'
disclosed a bug submitted by
b'rijalrojan'
b'Unauthenticated access to Zendesk tickets through athena-flex-production.shopifycloud.com Okta bypass'
19 Sep 2018
b'BOHEMIA INTERACTIVE a.s.'
disclosed a bug submitted by
b'europa'
b'(Possible) staff account takeover via reset token bruteforce at helpdesk.bistudio.com'
19 Sep 2018
b'Rocket.Chat'
disclosed a bug submitted by
b'mattaustin'
b'Remote Code Execution in Rocket.Chat Desktop'
18 Sep 2018
1
...
392
393
394
395
396
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM