Company Name: Kubernetes Company HackerOne URL: https://hackerone.com/kubernetes Submitted By:jub0bsLink to Submitters Profile:https://hackerone.com/jub0bs Report Title:monitoringprow-canaryk8sio is vulnerable to CVE-2022-21703 (Grafana 0-day)Report...
Company Name: Booking.com Company HackerOne URL: https://hackerone.com/bookingcom Submitted By:jub0bsLink to Submitters Profile:https://hackerone.com/jub0bs Report Title:Subdomain takeover of ci-supportbookingcom (pointing to Zendesk)Report...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:0x999Link to Submitters Profile:https://hackerone.com/0x999 Report Title:Ability to bulk submit reports via query...
Company Name: Enjin Company HackerOne URL: https://hackerone.com/enjin Submitted By:19whoami19Link to Submitters Profile:https://hackerone.com/19whoami19 Report Title:Cloudflare /cdn-cgi/ path allows resizing images from...
Company Name: Tools for Humanity Company HackerOne URL: https://hackerone.com/toolsforhumanity Submitted By:lauritzLink to Submitters Profile:https://hackerone.com/lauritz Report Title: Insufficient Filtering of "state"...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:v0id1Link to Submitters Profile:https://hackerone.com/v0id1 Report Title:Program Member Could Duplicate Report To A...
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:z2_Link to Submitters Profile:https://hackerone.com/z2_ Report Title:NULL dereference when encoding DN of x509...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:japzLink to Submitters Profile:https://hackerone.com/japz Report Title: Improper Access Control on Embedded Submission...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:iam_srpkLink to Submitters Profile:https://hackerone.com/iam_srpk Report Title:"package_name" can be set as desired when...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:akashhamal0x01Link to Submitters Profile:https://hackerone.com/akashhamal0x01 Report Title:Access Control Vulnerability Enabling Unauthorized Access to...
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:erdyLink to Submitters Profile:https://hackerone.com/erdy Report Title:Account deletion using the /v1/account/destroy API endpoint...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:nagliLink to Submitters Profile:https://hackerone.com/nagli Report Title: - Ability to disclose metadata about...
Company Name: EXNESS Company HackerOne URL: https://hackerone.com/exness Submitted By:alexandrioLink to Submitters Profile:https://hackerone.com/alexandrio Report Title:GraphQL attribute Batching DOS can take down...
Company Name: WakaTime Company HackerOne URL: https://hackerone.com/wakatime Submitted By:hasn0xLink to Submitters Profile:https://hackerone.com/hasn0x Report Title:IDOR to view order information of users...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:iamboualiLink to Submitters Profile:https://hackerone.com/iambouali Report Title:Inadequate redaction exposes sensitive information via the...
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:svalkanovLink to Submitters Profile:https://hackerone.com/svalkanov Report Title: Header Parsing leads to...
Company Name: PortSwigger Web Security Company HackerOne URL: https://hackerone.com/portswigger Submitted By:osama-hamadLink to Submitters Profile:https://hackerone.com/osama-hamad Report Title:A user with only permmision...
Company Name: PortSwigger Web Security Company HackerOne URL: https://hackerone.com/portswigger Submitted By:osama-hamadLink to Submitters Profile:https://hackerone.com/osama-hamad Report Title:Changing the administrator password via...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:hillybot__Link to Submitters Profile:https://hackerone.com/hillybot__ Report Title:any user could upload attachments to pentest...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:darkc0d3Link to Submitters Profile:https://hackerone.com/darkc0d3 Report Title:Possible PII Disclosure via Advanced Vetting Process...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:hacktusLink to Submitters Profile:https://hackerone.com/hacktus Report Title:LLM01: Invisible Prompt InjectionReport Link:https://hackerone.com/reports/2372363Date Submitted:13 May...
Company Name: Mattermost Company HackerOne URL: https://hackerone.com/mattermost Submitted By:ramsakal7582Link to Submitters Profile:https://hackerone.com/ramsakal7582 Report Title:Member role which doesn't have permission to...
Company Name: Teleport Company HackerOne URL: https://hackerone.com/teleport Submitted By:mr_asgLink to Submitters Profile:https://hackerone.com/mr_asg Report Title:A member with editor permissions can create...
Company Name: Shipt Company HackerOne URL: https://hackerone.com/shipt Submitted By:doomerhunterLink to Submitters Profile:https://hackerone.com/doomerhunter Report Title:Improper Access Control + Financial fraud allows...
