HackerOne Bug Bounty Disclosure: bypass-cloudflare-warp-lock-on-ios-byjoshatmotion
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by joshatmotion joshatmotion Report Bypass Cloudflare WARP lock on...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by joshatmotion joshatmotion Report Bypass Cloudflare WARP lock on...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by joshatmotion joshatmotion Report I found another way to...
Programme HackerOne GitLab GitLab Submitted by legit-security legit-security Report DOS via issue preview Full Report A considerable amount of time...
Programme HackerOne GitLab GitLab Submitted by legit-security legit-security Report DOS via move_issue Full Report A considerable amount of time and...
Programme HackerOne GitLab GitLab Submitted by otoyyy otoyyy Report Path paths and file disclosure vulnerabilities at influxdb.quality.gitlab.net Full Report A...
Programme HackerOne GitLab GitLab Submitted by vakzz vakzz Report RepositoryPipeline allows importing of local git repos Full Report A considerable...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne GitHub GitHub Submitted by jupenur jupenur Report Command injection in GitHub Actions ContainerStepHost Full Report A considerable amount...
Programme HackerOne Automattic Automattic Submitted by apapedulimu apapedulimu Report Archived / Deleted / Private Poll Can Be Viewed by Another...
Programme HackerOne Automattic Automattic Submitted by bugra bugra Report Stored XSS in intensedebate.com via the Comments RSS Full Report A...
Programme HackerOne Linktree Linktree Submitted by sudi sudi Report XSS in SocialIcon Link Full Report A considerable amount of time...
Programme HackerOne Lark Technologies Lark Technologies Submitted by snapsec snapsec Report Accessing/Editing Folders of Other Users in the Orginisation. Full...
Programme HackerOne Adobe Adobe Submitted by dreamer_eh dreamer_eh Report HTML INJECTION FOUND ON https://adobedocs.github.io/analytics-1.4-apis/swagger-docs.html DUE TO OUTDATED SWAGGER UI Full...
Programme HackerOne curl curl Submitted by kurohiro kurohiro Report CVE-2022-42916: HSTS bypass via IDN Full Report A considerable amount of...
Programme HackerOne curl curl Submitted by kurohiro kurohiro Report CVE-2022-35260: .netrc parser out-of-bounds access Full Report A considerable amount of...
Programme HackerOne Gymshark Gymshark Submitted by a-p0c a-p0c Report Subdomain takeover on 'de-headless.staging.gymshark.com' Full Report A considerable amount of time...
Programme HackerOne Node.js Node.js Submitted by haxatron1 haxatron1 Report CVE-2022-32213 bypass via obs-fold mechanic Full Report A considerable amount of...
Programme HackerOne PortSwigger Web Security PortSwigger Web Security Submitted by xctzn xctzn Report Business Logic, currency arbitrage - Possibility to...
Programme HackerOne Node.js Node.js Submitted by bnoordhuis bnoordhuis Report Weak randomness in WebCrypto keygen Full Report A considerable amount of...
Programme HackerOne Node.js Node.js Submitted by vvx7 vvx7 Report HTTP Request Smuggling Due to Incorrect Parsing of Header Fields Full...
Programme HackerOne Node.js Node.js Submitted by mhdawson mhdawson Report Node 18 reads openssl.cnf from /home/iojs/build/... upon startup on MacOS Full...
Programme HackerOne Node.js Node.js Submitted by shacharm shacharm Report HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding (improper...
Programme HackerOne Adobe Adobe Submitted by webcipher101 webcipher101 Report Reflected Cross site scripting via Swagger UI Full Report A considerable...
Programme HackerOne Linktree Linktree Submitted by dewcode91 dewcode91 Report A malicious admin can be able to permanently disable a Owner(Admin)...