Programme HackerOne curl curl Submitted by monnerat monnerat Report CVE-2023-23916: HTTP multi-header compression denial of service Full Report A considerable...
Programme HackerOne Twitter Twitter Submitted by eissen5c eissen5c Report The Deleted Polls is Still Accessable after 30 Days Full Report...
Programme HackerOne U.S. Dept Of Defense U.S. Dept Of Defense Submitted by spell1 spell1 Report Splunk Sensitive Information Disclosure @axiellstore.usahec.org...
Programme HackerOne HackerOne HackerOne Submitted by syjane syjane Report HackerOne Undisclosed Report Leak via PoC of Full Disclosure on Hacktivity...
Programme HackerOne Nextcloud Nextcloud Submitted by lukasreschke lukasreschke Report Desktop client can be tricked into opening/executing local files when clicking...
Programme HackerOne 8x8 Bounty 8x8 Bounty Submitted by ex0dus-0x ex0dus-0x Report Jitsi Desktop Client RCE By Interacting with Malicious URL...
Programme HackerOne EXNESS EXNESS Submitted by ashwarya ashwarya Report Double forward slash breaks server-side restrictions & allows access to prohibited...
Programme HackerOne Nextcloud Nextcloud Submitted by obitorasu obitorasu Report SSRF via filter bypass due to lax checking on IPs Full...
Programme HackerOne JetBlue JetBlue Submitted by doosec101 doosec101 Report Open Redirection Full Report A considerable amount of time and effort...
Programme HackerOne JetBlue JetBlue Submitted by doosec101 doosec101 Report Access to tomcat-manager with default creds Full Report A considerable amount...
Programme HackerOne Sorare Sorare Submitted by gokulsk gokulsk Report Mystery with a leaked token and Reusability of email confirmation link...
Programme HackerOne TikTok TikTok Submitted by amans amans Report TikTok 2FA Bypass Full Report A considerable amount of time and...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne Judge.me Judge.me Submitted by vj1naruto vj1naruto Report Stored XSS in Public Profile Reviews Full Report A considerable amount...
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report Improper Access Control in Ali Express Importer Full Report A considerable...
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report Self-XSS due to image URL can be eploited via XSSJacking techniques...
Programme HackerOne Judge.me Judge.me Submitted by criptex criptex Report HTML INJECTION (STORED) Full Report A considerable amount of time and...
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by haqpl haqpl Report Rails ActionView sanitize helper bypass leading to...
Programme HackerOne TikTok TikTok Submitted by s3c s3c Report XSS at TikTok Ads Endpoint Full Report A considerable amount of...
Programme HackerOne EXNESS EXNESS Submitted by siddharthamx siddharthamx Report Verification process done using different documents without corresponding to user information...
Programme HackerOne 8x8 8x8 Submitted by xdopa xdopa Report wavecell.com: Broken Link Hijacking / Instagram Takeover @ Full Report A...
Programme HackerOne TikTok TikTok Submitted by mrhavit mrhavit Report IDOR for changing privacy settings on any memories Full Report A...
