REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
b'bobrov'
117
b'geeknik'
80
b'linkks'
75
b'jobert'
70
b'sp1d3rs'
68
b'someonenobbd'
62
b'nyymi'
55
b'jon_bottarini'
49
b'haxta4ok00'
48
b'netfuzzer'
48
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
b'Greenhouse.io'
disclosed a bug submitted by
b'ahmed_ezzat_nasr'
b'Content Spoofing on link.greenhouse.io'
27 Jul 2017
b'Weblate'
disclosed a bug submitted by
b'blake12356'
b'The username of an account can be ..'
27 Jul 2017
b'Weblate'
disclosed a bug submitted by
b'blake12356'
b'No filteration of null characters in name field'
27 Jul 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'koshti25'
b'Broken Authentication and Session Management(Session Fixation)'
27 Jul 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'nightwatch-cybersecurity'
b'Android app does not use SSL for login'
27 Jul 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'abdulwahab'
b'Cookie Misconfiguration'
27 Jul 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'sfsecurityfirst'
b'ADB Backup is enabled within AndroidManifest'
27 Jul 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'm7mdharoun'
b'Email spoofing at booztlet.com'
27 Jul 2017
b'Maximum'
disclosed a bug submitted by
b'kuton'
b'Open redirect on https://werkenbijdefensie.nl/'
27 Jul 2017
b'Twitter'
disclosed a bug submitted by
b'joshbrodienz'
b'XXE on sms-be-vip.twitter.com in SXMP Processor'
26 Jul 2017
b'Twitter'
disclosed a bug submitted by
b'filedescriptor'
b'CSRF on Periscope Web OAuth authorization endpoint '
26 Jul 2017
b'WordPress'
disclosed a bug submitted by
b'jon_bottarini'
b'Reflected XSS at https://da.wordpress.org/themes/?s= via "s=" parameter '
26 Jul 2017
b'Keybase'
disclosed a bug submitted by
b'jupenur'
b'Universal Cross-Site Scripting in Keybase Chrome extension'
26 Jul 2017
b'Starbucks'
disclosed a bug submitted by
b'an0n-j'
b'Reflected XSS in openapi.starbucks.com /searchasyoutype/v1/search?x-api-key='
25 Jul 2017
b'VK.com'
disclosed a bug submitted by
b'lincoln9932'
b'?????? ???????? ??????? ?????? ? ?? ???????? ?? ???????????.'
25 Jul 2017
b'WakaTime'
disclosed a bug submitted by
b'mrreboot'
b'Unsafe Inline and Eval CSP Usage'
24 Jul 2017
b'Boozt Fashion AB'
disclosed a bug submitted by
b'lalka'
b'PHP info page disclosure on http://www.day.dk/'
24 Jul 2017
b'WakaTime'
disclosed a bug submitted by
b'silv3rpoision'
b'https://wakatime.com/ website CSP "script-src" includes "unsafe-inline"'
24 Jul 2017
b'Imgur'
disclosed a bug submitted by
b'vinothkumar'
b'Login to any user account using other facebook app access token '
24 Jul 2017
b'WakaTime'
disclosed a bug submitted by
b'silv3rpoision'
b'Password token validation in https://wakatime.com/'
24 Jul 2017
1
...
482
483
484
485
486
...
693
BY DENIS WERNER - @NOBBD -
IMPRESSUM