REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Trello'
disclosed a bug submitted by
b'slowrabbit'
b'Websocket response message disclose existence of Organization ID or Board ID'
08 May 2018
b'Valve'
disclosed a bug submitted by
b'nahamsec'
b'MySQL username and password leaked in developer.valvesoftware.com via source code dislosure'
07 May 2018
b'Perl (IBB)'
disclosed a bug submitted by
b'geeknik'
b'heap-buffer-overflow (WRITE of size 8) in Perl_pp_reverse()'
07 May 2018
b'Brave Software'
disclosed a bug submitted by
b'tikoo_sahil'
b'[DOS] Browser hangs on loading the code snippet'
06 May 2018
b'Brave Software'
disclosed a bug submitted by
b'tikoo_sahil'
b'[DOS] denial of service using code snippet on brave browser'
06 May 2018
b'Kaspersky Lab'
disclosed a bug submitted by
b'bluedangerforyou'
b'Hard Coded username and password in registry'
06 May 2018
b'VK.com'
disclosed a bug submitted by
b'arhimason'
b'??????????? id ?? ?????? ????????'
06 May 2018
b'Reverb.com'
disclosed a bug submitted by
b'bigshaq'
b'Persistent XSS in https://sandbox.reverb.com/item/'
06 May 2018
b'Node.js'
disclosed a bug submitted by
b'dade'
b'registry.nodejs.org Subdomain Takeover'
04 May 2018
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'Team object in GraphQL discloses team group names and permissions'
04 May 2018
b'Mavenlink'
disclosed a bug submitted by
b'tolo7010'
b'Account members can re-add themselve after has been deleted by administrator'
03 May 2018
b'Apache httpd (IBB)'
disclosed a bug submitted by
b'hanno'
b'Optionsbleed / CVE-2017-9798'
03 May 2018
b'Ed'
disclosed a bug submitted by
b'tangent90ninety'
b'Session cookie missing SecureFlag on git.edoverflow.com.'
03 May 2018
b'vulners.com'
disclosed a bug submitted by
b'bobrov'
b'[vulners.com] nginx alias_traversal'
03 May 2018
b'Coalition, Inc.'
disclosed a bug submitted by
b'startedfromthebottom'
b'No authentication on email address for password reset functionality/ https://platform.thecoalition.com/forgot-password'
03 May 2018
b'Unikrn'
disclosed a bug submitted by
b'tolo7010'
b'Rate-limit protection get executed in the last stage of the registration process, allowing enumeration of existing account.'
03 May 2018
b'New Relic'
disclosed a bug submitted by
b'jon_bottarini'
b'[NR Infrastructure] Bypass of #200576 through GraphQL query abuse - allows restricted user access to root account license key'
02 May 2018
b'New Relic'
disclosed a bug submitted by
b'jon_bottarini'
b'Manipulation of submit payment request allows me to obtain Infrastructure Pro/Other Services for free or at greatly reduced price'
02 May 2018
b'New Relic'
disclosed a bug submitted by
b'kunal_bahl'
b'Newrelic s3 bucket is writeable and deleteable by authorized AWS users'
02 May 2018
b'New Relic'
disclosed a bug submitted by
b'ho_nc'
b'Broken Authentication and session management OWASP A2'
02 May 2018
1
...
415
416
417
418
419
...
691
BY DENIS WERNER - @NOBBD -
IMPRESSUM