REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
58
b'ooooooo_q'
52
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'PHP (IBB)'
disclosed a bug submitted by
b'97ffb8d5'
b'Out of Bounds Memory Read in unserialize()'
27 Nov 2018
b'PHP (IBB)'
disclosed a bug submitted by
b'97ffb8d5'
b'Heap Use After Free in unserialize()'
27 Nov 2018
b'HackerOne'
disclosed a bug submitted by
b'madhu_anand'
b'IE only: stored Cross-Site Scripting (XSS) vulnerability through Program Asset identifier'
27 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'honoki'
b'XXE on ?????????? by bypassing WAF ????'
27 Nov 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'danny_grander'
b'flatmap-stream malicious package (distributed via the popular events-stream)'
26 Nov 2018
b'Liberapay'
disclosed a bug submitted by
b'sameerphad72'
b'Broken Authentication and session management OWASP A2'
26 Nov 2018
b'Chaturbate'
disclosed a bug submitted by
b'm00hdi'
b'Missing Rate Limitation at /photo_videos/photoset/create'
24 Nov 2018
b'FormAssembly'
disclosed a bug submitted by
b'milind1997'
b'SSLv3 Poodle Vulnerability'
24 Nov 2018
b'Vanilla'
disclosed a bug submitted by
b'mr_me'
b'Vanilla Forums Gdn_Format unserialize() Remote Code Execution Vulnerability'
23 Nov 2018
b'Vanilla'
disclosed a bug submitted by
b'mr_me'
b'Vanilla Forums domGetImages getimagesize Unserialize Remote Code Execution Vulnerability (critical)'
23 Nov 2018
b'Vanilla'
disclosed a bug submitted by
b'mr_me'
b'Vanilla Forums Xenforo password splitHash Unserialize Remote Code Execution Vulnerability'
23 Nov 2018
b'Vanilla'
disclosed a bug submitted by
b'mr_me'
b'Vanilla Forums ImportController index file_exists Unserialize Remote Code Execution Vulnerability'
23 Nov 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'cris_semmle'
b'Code Injection Vulnerability in zombie Package'
23 Nov 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'vulzzz'
b'List any file in the folder by using path traversal'
23 Nov 2018
b'h1-5411-CTF'
disclosed a bug submitted by
b'den1al'
b'CTF Writeup flag{cha1n1ng_bugs_f0r_fun_4nd_pr0f1t?_or_rep0rt_an_LF1}'
21 Nov 2018
b'Passit'
disclosed a bug submitted by
b'13ern'
b'app.passit.io is vulnerable against username enumeration'
21 Nov 2018
b'Uber'
disclosed a bug submitted by
b'firs0v'
b'Full path disclosure on track.uber.com'
20 Nov 2018
b'Uber'
disclosed a bug submitted by
b'r0t'
b'Possibility to enumerate and bruteforce promotion codes in Uber iOS App'
20 Nov 2018
b'Uber'
disclosed a bug submitted by
b'bobrov'
b'Open Redirect in riders.uber.com'
20 Nov 2018
b'Uber'
disclosed a bug submitted by
b'appsecure_in'
b'Lack of payment type validation in dial.uber.com allows for free rides'
20 Nov 2018
1
...
417
418
419
420
421
...
732
BY DENIS WERNER - @NOBBD -
IMPRESSUM