HackerOne Bug Bounty Disclosure: name-collision-of-shared-foldersbyaslfv
Programme HackerOne Nextcloud Nextcloud Submitted by aslfv aslfv Report Name collision of shared folders Full Report A considerable amount...
Bug Bounty
HackerOne Bug Bounty Disclosure: credential-leak-on-github:-https://github-com///-(peoplesoft-crm)bypentestor
Programme HackerOne 8x8 8x8 Submitted by pentestor pentestor Report Credential leak on GitHub: https://github.com/// (Peoplesoft CRM) Full Report A...
HackerOne Bug Bounty Disclosure: [indy_node]pool_upgrade-command-injection,-trustee-node-can-execute-command-in-any-other-node`s-system-bykmhlyxj0
Programme HackerOne Hyperledger Hyperledger Submitted by kmhlyxj0 kmhlyxj0 Report POOL_UPGRADE command injection, Trustee Node can execute command in any other...
HackerOne Bug Bounty Disclosure: the-endpoint-‘/test/webhooks’-is-vulnerable-to-dns-rebindingbymuhammadilyas
Programme HackerOne Omise Omise Submitted by muhammadilyas muhammadilyas Report The endpoint '/test/webhooks' is vulnerable to DNS Rebinding Full Report ...
HackerOne Bug Bounty Disclosure: blind-ssrf-with-escalation-possibilities-in-matrix-preview_link-apibyrevolte
Programme HackerOne Reddit Reddit Submitted by revolte revolte Report Blind SSRF with Escalation possibilities in matrix preview_link API Full Report...
HackerOne Bug Bounty Disclosure: cve-2023-28755:-redos-vulnerability-in-uribydee-see
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by dee-see dee-see Report CVE-2023-28755: ReDoS vulnerability in URI Full Report...
HackerOne Bug Bounty Disclosure: redos(-ruby,-time)byooooooo_q
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by ooooooo_q ooooooo_q Report ReDoS( Ruby, Time) Full Report A...
HackerOne Bug Bounty Disclosure: the-`io-kubernetes-client-util-generic-dynamic-dynamics`-contains-a-code-execution-vulnerability-due-to-snakeyamlbyjlleitschuh
Programme HackerOne Kubernetes Kubernetes Submitted by jlleitschuh jlleitschuh Report The `io.kubernetes.client.util.generic.dynamic.Dynamics` contains a code execution vulnerability due to SnakeYAML Full...
HackerOne Bug Bounty Disclosure: delete-any-user’s-added-email,telephone,fax,address,skype-via-csrf-in-(https://academy-acronis-com/)byimranhudaa
Programme HackerOne Acronis Acronis Submitted by imranhudaa imranhudaa Report Delete any user's added Email,Telephone,Fax,Address,Skype via csrf in (https://academy.acronis.com/) Full Report...
HackerOne Bug Bounty Disclosure: missing-brute-force-protection-for-passwords-of-password-protected-share-linksbyhackit_bharat
Programme HackerOne Nextcloud Nextcloud Submitted by hackit_bharat hackit_bharat Report Missing brute force protection for passwords of password protected share links...
HackerOne Bug Bounty Disclosure: file-read-vulnerability-allows-attackers-to-compromise-s3-buckets-using-prowbystealthy
Programme HackerOne Kubernetes Kubernetes Submitted by stealthy stealthy Report File Read Vulnerability allows Attackers to Compromise S3 buckets using Prow...
HackerOne Bug Bounty Disclosure: reflected-xss-in-[www-equifax-com]byabdoj
Programme HackerOne Equifax-vdp Equifax-vdp Submitted by abdoj abdoj Report reflected XSS in Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: reflected-xss-in-[www-equifax-com]byabdoj
Programme HackerOne Equifax-vdp Equifax-vdp Submitted by abdoj abdoj Report reflected XSS in Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: reentrancy-attack-in-eth-monero-atomic-swapbyfarinavito123
Programme HackerOne Monero Monero Submitted by farinavito123 farinavito123 Report Reentrancy attack in eth-monero atomic swap Full Report A considerable...
HackerOne Bug Bounty Disclosure: cve-2018-6389-exploitation—using-scripts-loaderbysalokin
Programme HackerOne Fastly VDP Fastly VDP Submitted by salokin salokin Report CVE-2018-6389 exploitation - using scripts loader Full Report ...
HackerOne Bug Bounty Disclosure: web-cache-deception-vulnerability-on-algolia-com-leads-to-personal-information-leakagebygolim
Programme HackerOne Algolia Algolia Submitted by golim golim Report Web Cache Deception vulnerability on algolia.com leads to personal information leakage...
BugCrowd Bug Bounty Disclosure: – Increase Rank on Bugcrowd Platform. – By MuhammadKhizerJaved
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Subdomain Takeover on worldcup.starlink.com – By ibrahimnet
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
HackerOne Bug Bounty Disclosure: sensitive-information-disclosurebyashishmurugan
Programme HackerOne Trellix Trellix Submitted by ashishmurugan ashishmurugan Report Sensitive Information Disclosure Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: cloudflare-is-not-properly-deleting-user’s-accountbyali_hassan_khan
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by ali_hassan_khan ali_hassan_khan Report Cloudflare is not properly deleting...
HackerOne Bug Bounty Disclosure: a-malicious-actor-could-rotate-tokens-of-a-victim,-given-that-he-knows-the-victim’s-token-idbyesx
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by esx esx Report A malicious actor could rotate...
HackerOne Bug Bounty Disclosure: possible-to-spoof-origin-in-“connected-sites”byrenniepak
Programme HackerOne MetaMask MetaMask Submitted by renniepak renniepak Report Possible to spoof Origin in "Connected Sites" Full Report A...
HackerOne Bug Bounty Disclosure: adding-h1_analyst_*-to-username-for-normal-usersbyrefaat01
Programme HackerOne HackerOne HackerOne Submitted by refaat01 refaat01 Report adding h1_analyst_* to username for normal users Full Report A...
HackerOne Bug Bounty Disclosure: github-security-lab-(ghsl)-vulnerability-report:-sqlinjection-in-filecontentprovider-kt-(ghsl-2022-059)byatorralba
Programme HackerOne ownCloud ownCloud Submitted by atorralba atorralba Report GitHub Security Lab (GHSL) Vulnerability Report: SQLInjection in FileContentProvider.kt (GHSL-2022-059) Full...
