REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Flock'
disclosed a bug submitted by
b'prial261'
b'Subdomain takeover dew to missconfigured project settings for Custom domain\xc2\xa0.'
26 Oct 2018
b'VK.com'
disclosed a bug submitted by
b'norver'
b'[??????/Android] ???????????? BroadcastReceiver ????????? ????????? ???? ??????? ? ?????????? ??????????? ??????? ????????????????? ??????????'
26 Oct 2018
b'HackerOne'
disclosed a bug submitted by
b'popeax'
b'Improper UUID validation results in bypass of #419896'
25 Oct 2018
b'HackerOne'
disclosed a bug submitted by
b'haxta4ok00'
b'User with privilege to maintain External Programs can update certain churned HackerOne programs'
25 Oct 2018
b'Nextcloud'
disclosed a bug submitted by
b'frankspierings'
b'Session fixation in password protected public download.'
25 Oct 2018
b'Nextcloud'
disclosed a bug submitted by
b'bugdiscloseguys'
b'Authentication Issue'
25 Oct 2018
b'Vanilla'
disclosed a bug submitted by
b'balis0ng'
b'A SQL injection vulnerability in Vanilla'
25 Oct 2018
b'Chaturbate'
disclosed a bug submitted by
b'glc'
b'Open redirect on chaturbate.com (tipping/purchase_success)'
25 Oct 2018
b'Starbucks'
disclosed a bug submitted by
b'jackds'
b'Sidekiq web UI (Ruby background processing) accessible unauthenticated via https://gift-test.starbucks.co.jp/sidekiq/busy'
24 Oct 2018
b'Brave Software'
disclosed a bug submitted by
b'qab'
b'chrome://brave navigation from web'
23 Oct 2018
b'Brave Software'
disclosed a bug submitted by
b'qab'
b'chrome://brave can still be navigated to, leading to RCE'
23 Oct 2018
b'Rockstar Games'
disclosed a bug submitted by
b'richardcao'
b"Smuggle SocialClub's Facebook OAuth Code via Referer Leakage"
23 Oct 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'webtonull'
b'Samlify is vulnerable to signature wrapping'
23 Oct 2018
b'h1-5411-CTF'
disclosed a bug submitted by
b'osintopsec'
b'MemeCTF serial exploitation to local file read to Papertrail access via API-token leakage and more'
22 Oct 2018
b'Brave Software'
disclosed a bug submitted by
b'metnew'
b"RCE: DnDing shortcut files to chrome://brave allows loading HTML files in Muon's context"
22 Oct 2018
b'Brave Software'
disclosed a bug submitted by
b'bobrov'
b'[Android] HTML Injection in BatterySaveArticleRenderer WebView'
22 Oct 2018
b'h1-5411-CTF'
disclosed a bug submitted by
b'manoelt'
b'Remote Command Execution in a internal server to get the flag file'
22 Oct 2018
b'h1-5411-CTF'
disclosed a bug submitted by
b'caioluders'
b'Flag WriteUp'
22 Oct 2018
b'h1-5411-CTF'
disclosed a bug submitted by
b'herrera'
b"Solution for h15411's CTF challenge"
22 Oct 2018
b'h1-5411-CTF'
disclosed a bug submitted by
b'apox'
b'h1-5411-CTF report: LFI / Deserialization / XXE vulnerability, '
22 Oct 2018
1
...
430
431
432
433
434
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM