REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'muber-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'lite:sess Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'udi-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'SSL-protected Reflected XSS in m.uber.com'
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'Configuration and/or source code files on uchat-staging.uberinternal.com can be viewed without OneLogin SSO Authentication '
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b"It's possible to view configuration and/or source code on uchat.awscorp.uberinternal.com without "
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017
b'WordPress'
disclosed a bug submitted by
b'rahulpratap'
b'Lack of Sanitization and Insufficient Authentication'
26 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'The Uber Promo Customer Endpoint Does Not Implement Multifactor Authentication, Blacklisting or Rate Limiting'
24 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'The Microsoft Store Uber App Does Not Implement Server-side Token Revocation'
24 Dec 2017
b'Uber'
disclosed a bug submitted by
b'gregoryvperry'
b'The Microsoft Store Uber App Does Not Implement Certificate Pinning'
24 Dec 2017
b'Twitter'
disclosed a bug submitted by
b'avinash_'
b'Open Redirect Protection Bypass'
23 Dec 2017
b'Mapbox'
disclosed a bug submitted by
b'aneeskhan'
b'Admin Panel Accessed (OAuth Bypassed ) '
21 Dec 2017
b'Zendesk'
disclosed a bug submitted by
b'yckul'
b'Secret API Key Leakage via Query String'
20 Dec 2017
b'Zendesk'
disclosed a bug submitted by
b'sergeym'
b'dom based xss in *.zendesk.com/external/zenbox/'
20 Dec 2017
b'Razer US'
disclosed a bug submitted by
b'edio'
b'Open redirect in razer-id.razerzone.com via the redirect parameter.'
20 Dec 2017
b'Razer US'
disclosed a bug submitted by
b'niwasaki'
b'Reflected XSS in razer-id.razerzone.com'
20 Dec 2017
b'Mail.Ru'
disclosed a bug submitted by
b'ruvlol'
b'Possibility to view subdepartments for arbitrary domain'
20 Dec 2017
b'Inflection'
disclosed a bug submitted by
b'protector47'
b'Goodhire Open Redirect'
20 Dec 2017
1
...
440
441
442
443
444
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM