Bug Bounty

hackerone

HackerOne Bug Bounty Disclosure: cross-site-scripting-reflected-on-hxxps-www-acronis-cz-dotaznik-roadshow-darkdream

August 26, 2024

Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:darkdreamLink to Submitters Profile:https://hackerone.com/darkdream Report Title:Cross Site Scripting (Reflected) on hXXps://wwwacroniscz/dotaznik/roadshow-2020/Report Link:https://hackerone.com/reports/1081747Date...

Read MoreRead more about HackerOne Bug Bounty Disclosure: cross-site-scripting-reflected-on-hxxps-www-acronis-cz-dotaznik-roadshow-darkdream
hackerone

HackerOne Bug Bounty Disclosure: cross-site-scripting-xss-reflected-on-hxxp-h-b-e-n-ips-mtn-co-ug-via-nginx-module-renzi

August 24, 2024

Company Name: MTN Group Company HackerOne URL: https://hackerone.com/mtn_group Submitted By:renziLink to Submitters Profile:https://hackerone.com/renzi Report Title:Cross-site Scripting (XSS) - Reflected on...

Read MoreRead more about HackerOne Bug Bounty Disclosure: cross-site-scripting-xss-reflected-on-hxxp-h-b-e-n-ips-mtn-co-ug-via-nginx-module-renzi
hackerone

HackerOne Bug Bounty Disclosure: cross-site-scripting-xss-reflected-on-hxxps-api-mtn-sd-carbon-admin-login-jsp-via-msgid-parameter-cve-renzi

August 24, 2024

Company Name: MTN Group Company HackerOne URL: https://hackerone.com/mtn_group Submitted By:renziLink to Submitters Profile:https://hackerone.com/renzi Report Title:Cross-site Scripting (XSS) - Reflected on...

Read MoreRead more about HackerOne Bug Bounty Disclosure: cross-site-scripting-xss-reflected-on-hxxps-api-mtn-sd-carbon-admin-login-jsp-via-msgid-parameter-cve-renzi
hackerone

HackerOne Bug Bounty Disclosure: cross-site-scripting-xss-reflected-on-hxxp-callertunez-mtn-com-gh-wap-noauth-sharedetail-ftl-via-callback-parameter-renzi

August 24, 2024

Company Name: MTN Group Company HackerOne URL: https://hackerone.com/mtn_group Submitted By:renziLink to Submitters Profile:https://hackerone.com/renzi Report Title:Cross-site Scripting (XSS) - Reflected on...

Read MoreRead more about HackerOne Bug Bounty Disclosure: cross-site-scripting-xss-reflected-on-hxxp-callertunez-mtn-com-gh-wap-noauth-sharedetail-ftl-via-callback-parameter-renzi
hackerone

HackerOne Bug Bounty Disclosure: dod-workstation-exposed-to-internet-via-tinypilot-kvm-with-no-authentication-socpuppet

August 16, 2024

Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:socpuppetLink to Submitters Profile:https://hackerone.com/socpuppet Report Title:DoD workstation exposed to...

Read MoreRead more about HackerOne Bug Bounty Disclosure: dod-workstation-exposed-to-internet-via-tinypilot-kvm-with-no-authentication-socpuppet
hackerone

HackerOne Bug Bounty Disclosure: course-registration-form-allowing-an-attacker-to-dump-all-the-candidate-name-who-had-enrolled-for-the-course-steveflex

August 16, 2024

Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:steveflexLink to Submitters Profile:https://hackerone.com/steveflex Report Title:Course Registration Form Allowing...

Read MoreRead more about HackerOne Bug Bounty Disclosure: course-registration-form-allowing-an-attacker-to-dump-all-the-candidate-name-who-had-enrolled-for-the-course-steveflex
hackerone

HackerOne Bug Bounty Disclosure: moderate-apache-http-server-mod-rewrite-proxy-handler-substitution-cve-cwe-improper-input-validation-orange

August 12, 2024

Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:orangeLink to Submitters Profile:https://hackerone.com/orange Report Title:moderate: Apache HTTP Server: mod_rewrite...

Read MoreRead more about HackerOne Bug Bounty Disclosure: moderate-apache-http-server-mod-rewrite-proxy-handler-substitution-cve-cwe-improper-input-validation-orange
hackerone

HackerOne Bug Bounty Disclosure: leaking-usernames-through-endpoints-wordpress-alitoni

August 10, 2024

Company Name: MTN Group Company HackerOne URL: https://hackerone.com/mtn_group Submitted By:alitoni224Link to Submitters Profile:https://hackerone.com/alitoni224 Report Title:Leaking usernames through endpoints WordpressReport Link:https://hackerone.com/reports/1785021Date...

Read MoreRead more about HackerOne Bug Bounty Disclosure: leaking-usernames-through-endpoints-wordpress-alitoni
hackerone

HackerOne Bug Bounty Disclosure: idor-lets-a-malicious-user-reveal-the-unpinned-achievement-badges-of-any-reddit-user-saurabhb

August 9, 2024

Company Name: Reddit Company HackerOne URL: https://hackerone.com/reddit Submitted By:saurabhbLink to Submitters Profile:https://hackerone.com/saurabhb Report Title:IDOR lets a malicious user reveal the...

Read MoreRead more about HackerOne Bug Bounty Disclosure: idor-lets-a-malicious-user-reveal-the-unpinned-achievement-badges-of-any-reddit-user-saurabhb
hackerone

HackerOne Bug Bounty Disclosure: permissions-can-be-bypassed-via-arbitrary-code-execution-through-abusing-libuv-signal-pipes-xion

August 8, 2024

Company Name: Node.js Company HackerOne URL: https://hackerone.com/nodejs Submitted By:xionLink to Submitters Profile:https://hackerone.com/xion Report Title:Permissions can be bypassed via arbitrary code...

Read MoreRead more about HackerOne Bug Bounty Disclosure: permissions-can-be-bypassed-via-arbitrary-code-execution-through-abusing-libuv-signal-pipes-xion

You may have missed

unlock_membership

Mastering Zero Trust Security for a Safer Digital World

April 23, 2025
Cobalt-Strike

Cobalt Strike Beacon Detected – 179[.]43[.]186[.]234:80

April 23, 2025
image

[PLAY] – Ransomware Victim: All Book Covers

April 22, 2025
image

[PLAY] – Ransomware Victim: Suburban Carting

April 22, 2025
image

[PLAY] – Ransomware Victim: Jet Ice

April 22, 2025