REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'sp1d3rs'
86
b'geeknik'
83
b'linkks'
75
b'jobert'
70
b'nyymi'
62
b'someonenobbd'
62
b'ooooooo_q'
54
b'guido'
50
b'haxta4ok00'
49
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'VK.com'
disclosed a bug submitted by
b'pisarenko'
b'?????????? flood ???????? ? ???????? ??'
04 Mar 2018
b'VK.com'
disclosed a bug submitted by
b'yango'
b'????????? (?????????? upgreid) ?????????: ?????? ?????????? ?? ???? ? ???????? (XSS - ?? ?????????)'
04 Mar 2018
b'VK.com'
disclosed a bug submitted by
b'lincoln9932'
b'CSRF ??????????????? ???????? ? ????? ? ??????'
04 Mar 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'bl4de'
b'[glance] Path Traversal in glance static file server allows to read content of arbitrary file'
04 Mar 2018
b'Pushwoosh'
disclosed a bug submitted by
b'ryudox'
b'Cleartext Password returned in JSON response'
04 Mar 2018
b'ownCloud'
disclosed a bug submitted by
b'wdem'
b'Password Complexity Not Enforced On Password Change'
03 Mar 2018
b'Automattic'
disclosed a bug submitted by
b'slavco'
b'wpjobmanager - unserialize of user input'
03 Mar 2018
b'TTS Bug Bounty'
disclosed a bug submitted by
b'northivanastan'
b'SSH server compatible with several vulnerable cryptographic algorithms'
02 Mar 2018
b'Keybase'
disclosed a bug submitted by
b'tomnomnom'
b'Difference in query string parameter processing between Hacker News and Keybase Chrome extension spawns chat to incorrect user'
02 Mar 2018
b'Grabtaxi Holdings Pte Ltd'
disclosed a bug submitted by
b'ysx'
b'[growth.grab.com] Reflected XSS via Base64-encoded "q" param on "my.html" Valentine\'s microsite'
02 Mar 2018
b'LocalTapiola'
disclosed a bug submitted by
b'muon4'
b'Information exposure via error pages (www.lahitapiola.fi Tomcat)'
02 Mar 2018
b'LocalTapiola'
disclosed a bug submitted by
b'putsi'
b'Reflected XSS+CSRF on secure.lahitapiola.fi'
02 Mar 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'bl4de'
b'[simple-server] HTML with iframe element can be used as filename, which might lead to load and execute malicious JavaScript '
01 Mar 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'bl4de'
b'[angular-http-server] Path Traversal in angular-http-server.js allows to read arbitrary file from the remote server'
01 Mar 2018
b'Node.js third-party modules'
disclosed a bug submitted by
b'alyssa_herrera'
b'[uppy] Stored XSS due to crafted SVG file'
01 Mar 2018
b'RubyGems'
disclosed a bug submitted by
b'plover'
b'Negative size in tar header causes infinite loop'
01 Mar 2018
b'Zomato'
disclosed a bug submitted by
b'nbsp'
b'SSRF in https://www.zomato.com???? allows reading local files and website source code'
28 Feb 2018
b'Nextcloud'
disclosed a bug submitted by
b'qasim'
b'Email Notification should be get while changing password on apps.nextcloud.com'
28 Feb 2018
b'Grabtaxi Holdings Pte Ltd'
disclosed a bug submitted by
b'grouptherapy'
b'Registration enabled on ???grab.com'
28 Feb 2018
b'Shopify'
disclosed a bug submitted by
b'0xacb'
b'Email Reply'
27 Feb 2018
1
...
474
475
476
477
478
...
738
BY DENIS WERNER - @NOBBD -
IMPRESSUM