REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'ExpressionEngine'
disclosed a bug submitted by
b'freetom'
b'Image lib - unescaped file path'
07 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'ramakanthk35'
b'Email Spoofing - SPF record set to Neutral'
06 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'ramakanthk35'
b'Email Spoofing - SPF record set to Neutral'
06 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'tolo7010'
b'calc.gsa.gov is vulnerable to CSV/Excel Command Injection'
06 Sep 2017
b'GitLab'
disclosed a bug submitted by
b'b3nac'
b'Gitlab is vulnerable to impersonation attacks due to broken links'
06 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'jackds'
b'Subdomain take-over of {REDACTED}.18f.gov'
06 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'edio'
b'{REDACTED}.data.gov subdomain takeover.'
06 Sep 2017
b'Unikrn'
disclosed a bug submitted by
b'geekboy'
b'Flash CSRF: Update Ad Frequency %: [cp-ng.pinion.gg]'
06 Sep 2017
b'Legal Robot'
disclosed a bug submitted by
b'shivanagakrishna'
b'Logic issue in email change process'
06 Sep 2017
b'Legal Robot'
disclosed a bug submitted by
b'hulskr'
b'User enumeration from failed login error message'
06 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'r0p3'
b'federalist.18f.gov vulnerable to Sweet32 attack'
05 Sep 2017
b'Rockstar Games'
disclosed a bug submitted by
b'alexbirsan'
b'Stored XSS in snapmatic comments'
05 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'sp1d3rs'
b'Double Stored Cross-Site scripting in the admin panel'
05 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'sp1d3rs'
b'[IDOR] The authenticated user can restart website build or view build logs on any another Federalist account'
05 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'sp1d3rs'
b'Race condition on the Federalist API endpoints can lead to the Denial of Service attack'
05 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'sp1d3rs'
b"The user, who was deleted from Github Organization, still can access all functions of federalist, in case he didn't do logout"
05 Sep 2017
b'TTS Bug Bounty'
disclosed a bug submitted by
b'sp1d3rs'
b'The Federalsit session cookie (federalist.sid) is not properly invalidated - backdoor access to the account is possible'
05 Sep 2017
b'Uber'
disclosed a bug submitted by
b'mishre'
b'SAML Authentication Bypass on uchat.uberinternal.com'
05 Sep 2017
b'Coinbase'
disclosed a bug submitted by
b'tejpratap'
b'Captcha Bypass in Coinbase SignUp Form'
05 Sep 2017
b'Legal Robot'
disclosed a bug submitted by
b'flashdisk'
b'first name and last name restrictions bypass'
05 Sep 2017
1
...
468
469
470
471
472
...
692
BY DENIS WERNER - @NOBBD -
IMPRESSUM