REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Passit'
disclosed a bug submitted by
b'13ern'
b'app.passit.io is vulnerable against username enumeration'
21 Nov 2018
b'Uber'
disclosed a bug submitted by
b'firs0v'
b'Full path disclosure on track.uber.com'
20 Nov 2018
b'Uber'
disclosed a bug submitted by
b'r0t'
b'Possibility to enumerate and bruteforce promotion codes in Uber iOS App'
20 Nov 2018
b'Uber'
disclosed a bug submitted by
b'bobrov'
b'Open Redirect in riders.uber.com'
20 Nov 2018
b'Uber'
disclosed a bug submitted by
b'appsecure_in'
b'Lack of payment type validation in dial.uber.com allows for free rides'
20 Nov 2018
b'Uber'
disclosed a bug submitted by
b'mdv'
b'Stored XSS on any page in most Uber domains'
20 Nov 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'dienpv'
b'Prototype pollution attack (mergify)'
20 Nov 2018
b'Ruby on Rails'
disclosed a bug submitted by
b'ooooooo_q'
b'Validation bypass for queries generated for PostgreSQL'
19 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[lk.contact-sys.com] SQL Injection reset_password FP_LK_USER_LOGIN'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[contact-sys.com] SQL Injection /ajax/where/cityNameByCountryId limit param'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[contact-sys.com] XSS /ajax/transfer/status trn param'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[lk.contact-sys.com] LKlang Path Traversal'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[ibank.qiwi.ru] XSS via Request-URI'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[wallet.rapida.ru] XSS Cookie flashcookie'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[contact-sys.com] XSS via Request-URI'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[sms.qiwi.ru] XSS via Request-URI'
18 Nov 2018
b'WePay'
disclosed a bug submitted by
b'bobrov'
b'[stage-go.wepay.com] XSS via Request URI'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[vitrina.contact-sys.com] Full Path Disclosure'
18 Nov 2018
b'Sucuri'
disclosed a bug submitted by
b'bobrov'
b'[backups*.sucuri.net] CRLF Injection'
18 Nov 2018
b'QIWI'
disclosed a bug submitted by
b'bobrov'
b'[id.rapida.ru] Full Path Disclosure'
18 Nov 2018
1
...
424
425
426
427
428
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM
