REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Harvest'
disclosed a bug submitted by
b'vijay_kumar1110'
b'Project Manager can approve pending reports(Access control Issue)'
17 Aug 2017
b'Udemy'
disclosed a bug submitted by
b'kaushalag29'
b'Violation of secure design principle'
17 Aug 2017
b'Open-Xchange'
disclosed a bug submitted by
b'vijay_kumar1110'
b'Resend invitation to members by Read only user(Privilege Escalation)'
17 Aug 2017
b'Open-Xchange'
disclosed a bug submitted by
b'vijay_kumar1110'
b'Unauthorized access to attachments details of Private Calendar appointments (Access control issue)'
17 Aug 2017
b'Open-Xchange'
disclosed a bug submitted by
b'vijay_kumar1110'
b'Critical : View/Edit access to private appointments of calendar folder by read only user (Vertical privilege escalation)'
17 Aug 2017
b'Udemy'
disclosed a bug submitted by
b'hi_man'
b'CSRF Token'
17 Aug 2017
b'Grabtaxi Holdings Pte Ltd'
disclosed a bug submitted by
b'netfuzzer'
b'Dom based xss affecting all pages from https://www.grab.com/.'
17 Aug 2017
b'Unikrn'
disclosed a bug submitted by
b'yaworsk'
b'Urgent: Server side template injection via Smarty template allows for RCE'
17 Aug 2017
b'Weblate'
disclosed a bug submitted by
b'ashish_r_padelkar'
b'Csrf in watch-unwatch projects'
17 Aug 2017
b'Weblate'
disclosed a bug submitted by
b'blake12356'
b'Error Message When Changing Username'
17 Aug 2017
b'Zomato'
disclosed a bug submitted by
b'gerben_javado'
b'[api.zomato.com] Login to any account with the emailaddress'
17 Aug 2017
b'Moneybird'
disclosed a bug submitted by
b'azizs3curity'
b'Stored XSS at Moneybird'
17 Aug 2017
b'HackerOne'
disclosed a bug submitted by
b'ericlaw'
b'Missing Certificate Authority Authorization rule'
17 Aug 2017
b'Legal Robot'
disclosed a bug submitted by
b'attacker911'
b'Password reset access control'
16 Aug 2017
b'Quora'
disclosed a bug submitted by
b'imran-parray'
b'Possibility of DOS Through logging System'
16 Aug 2017
b'Grabtaxi Holdings Pte Ltd'
disclosed a bug submitted by
b'vagg-a-bond'
b'[parcel.grab.com] DOM XSS at /assets/bower_components/lodash/perf/'
16 Aug 2017
b'Moneybird'
disclosed a bug submitted by
b'bogdantcaciuc'
b'Moneybird customers invoices leak in cacheable urls'
16 Aug 2017
b'Legal Robot'
disclosed a bug submitted by
b'hulskar'
b'Tampering the mail id on chatbox'
16 Aug 2017
b'Legal Robot'
disclosed a bug submitted by
b'samczsun'
b'Improper validation of parameters while creating issues'
16 Aug 2017
b'Legal Robot'
disclosed a bug submitted by
b'ashishag29'
b'Password Reset page Session Fixation'
16 Aug 2017
1
...
478
479
480
481
482
...
694
BY DENIS WERNER - @NOBBD -
IMPRESSUM