REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Homebrew'
disclosed a bug submitted by
b'ejholmes'
b'GitHub API Key for BrewTestBot is publicly exposed'
11 Aug 2018
b'Razer US'
disclosed a bug submitted by
b'wiardvanrij'
b'Admin login page reveals user account - no anti-bruteforce'
10 Aug 2018
b'Hacker Target'
disclosed a bug submitted by
b'cdl'
b'Sending Emails from DNSDumpster - Server-Side Request Forgery to Internal SMTP Access'
10 Aug 2018
b'Laravel'
disclosed a bug submitted by
b'x1m'
b'Persistent Cross-Site Scripting in default Laravel installation'
10 Aug 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'cris_semmle'
b'Command Injection Vulnerability in win-fork/win-spawn Packages'
10 Aug 2018
b'Nextcloud'
disclosed a bug submitted by
b'nickvergessen'
b'HTML injection with AutoComplete suggestions'
10 Aug 2018
b'Starbucks'
disclosed a bug submitted by
b'0xpatrik'
b'Subdomain takeover on wfmnarptpc.starbucks.com'
09 Aug 2018
b'RubyGems'
disclosed a bug submitted by
b'reed'
b'Malware in `active-support` gem'
09 Aug 2018
b'Reverb.com'
disclosed a bug submitted by
b'm7mdharoun'
b'Basic auth details is still work on report ( 351555 ) '
09 Aug 2018
b'HackerOne'
disclosed a bug submitted by
b'qwertyqwerty'
b'TeamProfile exposes partially sensitive information through GraphQL'
08 Aug 2018
b'MyEtherWallet'
disclosed a bug submitted by
b'mrbean'
b'Development configuration file https://myetherwallet.com/'
08 Aug 2018
b'Uber'
disclosed a bug submitted by
b'orange'
b'Improper Access Control on Onelogin in multi-layered architecture'
08 Aug 2018
b'Discourse'
disclosed a bug submitted by
b'fransrosen'
b'CSRF-tokens on pages without no-cache headers, resulting in ATO when using CloudFlare proxy (Web Cache Deception)'
08 Aug 2018
b'Cloudflare'
disclosed a bug submitted by
b'yox'
b'Private API key leakage due to lack of access control'
08 Aug 2018
b'Vanilla'
disclosed a bug submitted by
b'tikoo_sahil'
b'Able to Select Every Poll Option[http://tedwebers-famous-loudspeakers.vanillacommunities.com]'
08 Aug 2018
b'Brave Software'
disclosed a bug submitted by
b'kmodi'
b'Cross domain tracking even with 3rd party cookies disabled.'
07 Aug 2018
b'Brave Software'
disclosed a bug submitted by
b'0ktavandi'
b'OPEN REDIRECTION at every 302 HTTP CODE'
07 Aug 2018
b'Razer US'
disclosed a bug submitted by
b'gdinar'
b'XSS on Saved Carts page'
07 Aug 2018
b'Razer US'
disclosed a bug submitted by
b'gdinar'
b"Customer's e-mail disclosure"
07 Aug 2018
b'Shipt'
disclosed a bug submitted by
b'robd4k'
b'Open redirect on marketing site'
07 Aug 2018
1
...
445
446
447
448
449
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM