HackerOne Bug Bounty Disclosure: path-traversal-issue-at-https:///blaze/bylu3ky-13
Programme HackerOne Sony Sony Submitted by lu3ky-13 lu3ky-13 Report Path Traversal issue at https:///blaze/ Full Report A considerable amount of...
Bug Bounty
HackerOne Bug Bounty Disclosure: ssrf-on-http://www-/crossdomain-php-via-url-parameterbyn0x496n
Programme HackerOne Sony Sony Submitted by n0x496n n0x496n Report SSRF on http://www./crossdomain.php via url parameter Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: blind-ssrf-in-social-plugins-line-mebysirleeroyjenkins
Programme HackerOne LINE LINE Submitted by sirleeroyjenkins sirleeroyjenkins Report Blind SSRF in social-plugins.line.me Full Report A considerable amount of time...
BugCrowd Bug Bounty Disclosure: – Open Redirect using redirect-uri parameter in the URL leads to Mass Information Disclosure of all sensitive Information collected during Verification. – By jeetbhdr
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
HackerOne Bug Bounty Disclosure: bypass-two-factor-authenticationbyydvanjali
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by ydvanjali ydvanjali Report Bypass two-factor authentication Full Report...
HackerOne Bug Bounty Disclosure: open-redirect-on-www-redditinc-com-via-`failed`-query-param-bypass-after-fixed-bug-#1257753bylu3ky-13
Programme HackerOne Reddit Reddit Submitted by lu3ky-13 lu3ky-13 Report Open Redirect on www.redditinc.com via `failed` query param bypass after fixed...
HackerOne Bug Bounty Disclosure: lack-of-packet-sanitation-in-goflow-results-in-multiple-dos-attack-vectors-and-bugsbypath_network
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by path_network path_network Report Lack of Packet Sanitation in...
HackerOne Bug Bounty Disclosure: password-policy-restriction-bypassbylohigowda
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by lohigowda lohigowda Report Password Policy Restriction Bypass Full...
HackerOne Bug Bounty Disclosure: idor-allows-an-attacker-to-modify-the-links-of-any-userbycriptex
Programme HackerOne Reddit Reddit Submitted by criptex criptex Report IDOR allows an attacker to modify the links of any user...
HackerOne Bug Bounty Disclosure: unrestricted-file-upload-on-reddit-secure-force-combyheckintosh
Programme HackerOne Reddit Reddit Submitted by heckintosh heckintosh Report Unrestricted File Upload on reddit.secure.force.com Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: xss-in-widget-review-form-preview-in-settingsbypenguinshelp
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report XSS in Widget Review Form Preview in settings Full Report A...
HackerOne Bug Bounty Disclosure: take-over-subdomains-of-r2-dev-using-r2-custom-domainsbyalbertspedersen
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by albertspedersen albertspedersen Report Take over subdomains of r2.dev...
HackerOne Bug Bounty Disclosure: server-side-request-forgery–(ssrf)byraja404
Programme HackerOne Yelp Yelp Submitted by raja404 raja404 Report Server-side request forgery (ssrf) Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: directory-listing-vulnerability-on–packet8-net/php/include/byrajauzairabdullah
Programme HackerOne 8x8 8x8 Submitted by rajauzairabdullah rajauzairabdullah Report Directory Listing vulnerability on .packet8.net/php/include/ Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: dns-rebinding-in—inspect-(insufficient-fix-of-cve-2022-32212-affecting-macos-devices)byzeyu2001
Programme HackerOne Node.js Node.js Submitted by zeyu2001 zeyu2001 Report DNS rebinding in --inspect (insufficient fix of CVE-2022-32212 affecting macOS devices)...
HackerOne Bug Bounty Disclosure: cors-misconfiguration-on-yelpbyqualwin3001
Programme HackerOne Yelp Yelp Submitted by qualwin3001 qualwin3001 Report CORS Misconfiguration on Yelp Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: xss-reflected-on-reddit-com-via-url-pathbycriptex
Programme HackerOne Reddit Reddit Submitted by criptex criptex Report XSS Reflected on reddit.com via url path Full Report A considerable...
HackerOne Bug Bounty Disclosure: main-domain-takeover-at–https://www-marketo-net/bygdattacker
Programme HackerOne Adobe Adobe Submitted by gdattacker gdattacker Report Main Domain Takeover at https://www.marketo.net/ Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: com-basecamp-bc3-webview-javascript-injection-and-js-bridge-takeoverbyfr4via
Programme HackerOne Basecamp Basecamp Submitted by fr4via fr4via Report com.basecamp.bc3 Webview Javascript Injection and JS bridge takeover Full Report A...
HackerOne Bug Bounty Disclosure: dll-search-order-hijacking-vulnerability-in-work-64-exe-v7-16-3-1-exebyis-
Programme HackerOne 8x8 8x8 Submitted by is- is- Report DLL Search-Order Hijacking Vulnerability in work-64-exe-v7.16.3-1.exe Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: xss-in-zentao-integration-affecting-self-hosted-instances-without-strict-cspbyjoaxcar
Programme HackerOne GitLab GitLab Submitted by joaxcar joaxcar Report XSS in ZenTao integration affecting self hosted instances without strict CSP...
HackerOne Bug Bounty Disclosure: dos:-out-of-memory-from-gif-through-upload-apibycatenacyber
Programme HackerOne Mattermost Mattermost Submitted by catenacyber catenacyber Report DOS: out of memory from gif through upload api Full Report...
HackerOne Bug Bounty Disclosure: cors-misconfiguration-on-vanillaforums-combyadmin0x00
Programme HackerOne Vanilla Vanilla Submitted by admin0x00 admin0x00 Report CORS Misconfiguration on vanillaforums.com Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: there-is-no-rate-limit-for-sme-registration-portalbysachinrajput
Programme HackerOne MTN Group MTN Group Submitted by sachinrajput sachinrajput Report There is no rate limit for SME REGISTRATION PORTAL...
