REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
81
b'linkks'
75
b'jobert'
70
b'someonenobbd'
62
b'nyymi'
60
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Liberapay'
disclosed a bug submitted by
b'kapytein'
b'Unsafe deserialization in Libera Pay allows to escalate a SQL injection to Remote Command Execution'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'mah1ndra'
b'CSRF token manipulation in every possible form submits. NO server side Validation'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'buggy_hunter'
b'csrf token did not changed after login/logout many times'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'nthack'
b'Current CSP Policy chained with HTML Injection can lead to Data Exfiltration'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'4w3'
b'Phishing by Navigating Browser Tabs'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'lahataleputih'
b'CSRF ON EDITING NAME (OPTIONAL)'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'hack2684'
b'Insecure Account Deletion'
04 Jun 2018
b'Mail.Ru'
disclosed a bug submitted by
b'inet_freedom'
b' Local paths disclosure through error message'
04 Jun 2018
b'Mail.Ru'
disclosed a bug submitted by
b'lincoln9932'
b'lootdog.io XSS'
04 Jun 2018
b'Mail.Ru'
disclosed a bug submitted by
b'danila_xawdxawdx'
b'Blind Stored XSS'
04 Jun 2018
b'Mail.Ru'
disclosed a bug submitted by
b'danila_xawdxawdx'
b'Partner Account Takeover on https://www.delivery-club.ru ????? ???????????????? ???????.'
04 Jun 2018
b'Mail.Ru'
disclosed a bug submitted by
b'danila_xawdxawdx'
b'??????????? ?????? ???? ?? https://widget.operator.mail.ru'
04 Jun 2018
b'Mail.Ru'
disclosed a bug submitted by
b'danila_xawdxawdx'
b'CSRF ?? ?????????? ?????? ?? ???????'
04 Jun 2018
b'Mail.Ru'
disclosed a bug submitted by
b'danila_xawdxawdx'
b'Account Takeover on https://www.delivery-club.ru ????? ??????????? ???????.'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'd4w'
b'The csrf token remains same after user logs in'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'mah1ndra'
b'Same CSRF token is being used for deleting other platform login\xe2\x80\x99s within an account and across other liberapay Account\xe2\x80\x99s'
04 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'4bg0p'
b'Anyone can register organization legal type as "Soletrader"'
03 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'babayaga_'
b'Liberapay Non Verified Account Takeover with signup feature'
03 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'amaljacob'
b'Able to View other users income history'
02 Jun 2018
b'Liberapay'
disclosed a bug submitted by
b'johnevetsecond24'
b'Unsecure changing password'
02 Jun 2018
1
...
451
452
453
454
455
...
733
BY DENIS WERNER - @NOBBD -
IMPRESSUM