REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Vanilla'
disclosed a bug submitted by
b'geekboy'
b'Accessing Private Files Shared in message of other users'
23 Jul 2018
b'Open-Xchange'
disclosed a bug submitted by
b'mishre'
b'Blind XXE via Powerpoint files'
23 Jul 2018
b'Razer US'
disclosed a bug submitted by
b'achapman'
b'Razer Synapse 3 Local Privilege Escalation'
23 Jul 2018
b'Tor'
disclosed a bug submitted by
b'rbcafe'
b'Expose relay IP in the debug (The source is different from the rendering)'
21 Jul 2018
b'Nextcloud'
disclosed a bug submitted by
b'noumar'
b'OAuth2 Access Token and App Password Security Vulnerability'
21 Jul 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'n1__'
b'[markdown-pdf] Local file reading'
20 Jul 2018
b'Starbucks'
disclosed a bug submitted by
b'qwacsawd'
b'Able to purchase a gift card with any amount'
20 Jul 2018
b'New Relic'
disclosed a bug submitted by
b'ldionmarcil'
b'Stored XSS in Brower `name` field reflected in two pages'
20 Jul 2018
b'HackerOne'
disclosed a bug submitted by
b'kapytein'
b'Team object exposes amount of participants in a private program'
20 Jul 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'szkrstf'
b'[ponse] Path traversal in ponse module allows to read any file on server'
20 Jul 2018
b'Valve'
disclosed a bug submitted by
b'chippy'
b'Malformed .BSP Access Violation in CS:GO can lead to Remote Code Execution'
19 Jul 2018
b'Shopify'
disclosed a bug submitted by
b'rijalrojan'
b'Potential SSRF and disclosure of sensitive site on *shopifycloud.com'
19 Jul 2018
b'Augur'
disclosed a bug submitted by
b'sorachiace'
b'Subdomain takeover on slack.augur.net pointing to GitHub Pages'
19 Jul 2018
b'Ruby on Rails'
disclosed a bug submitted by
b'orange'
b'Path Traversal on Default Installed Rails Application (Asset Pipeline)'
19 Jul 2018
b'Slack'
disclosed a bug submitted by
b'irvinlim'
b'HTTP parameter pollution from outdated Greenhouse.io JS dependency'
19 Jul 2018
b'PortSwigger Web Security'
disclosed a bug submitted by
b'egyptghost1'
b'Activat burp suite pro with the old license after transfared to anothe account'
19 Jul 2018
b'Mail.Ru'
disclosed a bug submitted by
b'diabllo'
b'Race condition ?? market.games.mail.ru'
18 Jul 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'misterch0c'
b'Stored XSS in Node-Red'
18 Jul 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'caioluders'
b"[entitlements] Command injection on the 'path' parameter"
18 Jul 2018
b'OLX'
disclosed a bug submitted by
b'd4w'
b'XSS in OLX.pl ("title" in new advertisement)'
18 Jul 2018
1
...
403
404
405
406
407
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM