REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'ICQ'
disclosed a bug submitted by
b'3c75'
b'Gain access to random information via group chat "about" property'
01 Oct 2018
b'Reverb.com'
disclosed a bug submitted by
b'sandeep_hodkasia'
b'Stored xss in shop name @ lp.reverb.com'
01 Oct 2018
b'ICQ'
disclosed a bug submitted by
b'executor'
b'Stored xss ? ??????????? ?????????.'
01 Oct 2018
b'ICQ'
disclosed a bug submitted by
b'n4sty'
b'XSS ??? ?????????? ? ??? ???????????? '
01 Oct 2018
b'ICQ'
disclosed a bug submitted by
b'flamezzz'
b'[web.icq.com] Stored XSS in link when sending message'
01 Oct 2018
b'Chaturbate'
disclosed a bug submitted by
b'lucky_sen'
b'Rate limit missing at room login'
30 Sep 2018
b'Inflection'
disclosed a bug submitted by
b'exception'
b'Session ID is accessible via XSS'
30 Sep 2018
b'PullString'
disclosed a bug submitted by
b'exception'
b'Open redirect at staging.pullstring.com'
30 Sep 2018
b'Shopify'
disclosed a bug submitted by
b'tony_tsep'
b'Stored XSS on buy button'
29 Sep 2018
b'Brave Software'
disclosed a bug submitted by
b'metnew'
b'Local files reading using `link[rel="import"]`'
29 Sep 2018
b'Brave Software'
disclosed a bug submitted by
b'metnew'
b'Local files reading from the "file://" origin through `brave://`'
29 Sep 2018
b'Monero'
disclosed a bug submitted by
b'ahook'
b'Malicious get_random_rct_outs.bin rpc can cause a near-infinite loop'
28 Sep 2018
b'Monero'
disclosed a bug submitted by
b'talko'
b'Stack Overflow in JSON RPC Server'
28 Sep 2018
b'Upserve '
disclosed a bug submitted by
b'naasha'
b'Reflected xss on theacademy.upserve.com'
28 Sep 2018
b'ExpressionEngine'
disclosed a bug submitted by
b'unbaiat'
b'License verification mechanism can be bypassed'
28 Sep 2018
b'ExpressionEngine'
disclosed a bug submitted by
b'unbaiat'
b'Persistent XSS via malicious license file'
28 Sep 2018
b'Weblate'
disclosed a bug submitted by
b'crazy_wonk'
b'2nd issue>>> flood of email no rate limit on delete account confirmation email >> '
28 Sep 2018
b'Weblate'
disclosed a bug submitted by
b'crazy_wonk'
b'flood of comment no rate limit on commnets >> by using different user agent '
28 Sep 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'asgerf'
b'Prototype pollution attack (merge.recursive)'
28 Sep 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'asgerf'
b'Prototype pollution attack (defaults-deep / constructor.prototype)'
28 Sep 2018
1
...
430
431
432
433
434
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM