REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
56
b'ooooooo_q'
50
b'jon_bottarini'
49
b'haxta4ok00'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'LY Corporation'
disclosed a bug submitted by
b'tosun'
b'Reflected XSS in OAUTH2 login flow (https://access.line.me)'
04 Oct 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'mattaustin'
b'CVE-2023-30587 Process-based permissions can be bypassed with the "inspector" module.'
30 Sep 2023
b'LinkedIn'
disclosed a bug submitted by
b'find_me_here'
b'Attackers can create unlimited jobs by paying a low price `( Rp. 10,000 )` from the original lowest price of around **Rp 93,151**'
29 Sep 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'unexpectedbuffercon_'
b'[] Information disclosure due unauthenticated access to APIs and system browser functions'
29 Sep 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'xandsz'
b'authentication bypass'
29 Sep 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'testingforbugs'
b'Reflected XSS at https:///'
29 Sep 2023
b'U.S. Dept Of Defense'
disclosed a bug submitted by
b'unexpectedbuffercon_'
b'[] Reflected XSS via Keycloak on '
29 Sep 2023
b'Mattermost'
disclosed a bug submitted by
b'zerodivisi0n'
b'Reflected XSS in OAuth complete endpoints'
28 Sep 2023
b'Liberapay'
disclosed a bug submitted by
b'ma_hunter'
b' Twitter account hijack @Costalfy'
27 Sep 2023
b'Internet Bug Bounty'
disclosed a bug submitted by
b'selmelc'
b'[curl] CVE-2023-38039: HTTP header allocation DOS'
27 Sep 2023
b'Mozilla Core Services'
disclosed a bug submitted by
b'mikey96'
b'Subdomain Takeover on mozaws.net'
27 Sep 2023
b'Mozilla Core Services'
disclosed a bug submitted by
b'unexpectedbuffercon_'
b'Missing Function Level Access Control in Mozilla formula containsRegular Expression Denial of Service (CVE-2023-25166)'
27 Sep 2023
b'Nextcloud'
disclosed a bug submitted by
b'themarkib0x0'
b'Existance of calendars and addressbooks can be checked by unauthenticated users '
26 Sep 2023
b'Nextcloud'
disclosed a bug submitted by
b'cyber_world_01'
b'No Rate Limit On Forgot Password on https://apps.nextcloud.com'
26 Sep 2023
b'Nextcloud'
disclosed a bug submitted by
b'shuvam321'
b'Nextcloud All-In-One path disclosure of internal frontend'
26 Sep 2023
b'Nextcloud'
disclosed a bug submitted by
b'krrish_hackk'
b'Dos in Form Submission at https://nextcloud.com/instant-trial/'
26 Sep 2023
b'LinkedIn'
disclosed a bug submitted by
b'find_me_here'
b'Can VIEW Videos on LinkedIn Learning that Require a Subscription Without having to Subscribe Via `SHARE features`'
25 Sep 2023
b'LinkedIn'
disclosed a bug submitted by
b'headhunter'
b'LinkedIn users primary email + full name visibilty'
25 Sep 2023
b'LinkedIn'
disclosed a bug submitted by
b'vampirex'
b'HTTP Request Smuggling (CL.0) leads to mass redirect users to attacker server without user interaction'
25 Sep 2023
b'LinkedIn'
disclosed a bug submitted by
b'headhunter'
b'Access to resumes applied through LinkedIn Jobs'
22 Sep 2023
1
...
43
44
45
46
47
...
717
BY DENIS WERNER - @NOBBD -
IMPRESSUM
