Programme HackerOne Adobe Adobe Submitted by dreamer_eh dreamer_eh Report HTML INJECTION FOUND ON https://adobedocs.github.io/analytics-1.4-apis/swagger-docs.html DUE TO OUTDATED SWAGGER UI Full...
Programme HackerOne curl curl Submitted by kurohiro kurohiro Report CVE-2022-42916: HSTS bypass via IDN Full Report A considerable amount of...
Programme HackerOne curl curl Submitted by kurohiro kurohiro Report CVE-2022-35260: .netrc parser out-of-bounds access Full Report A considerable amount of...
Programme HackerOne Gymshark Gymshark Submitted by a-p0c a-p0c Report Subdomain takeover on 'de-headless.staging.gymshark.com' Full Report A considerable amount of time...
Programme HackerOne Node.js Node.js Submitted by vvx7 vvx7 Report HTTP Request Smuggling Due to Incorrect Parsing of Header Fields Full...
Programme HackerOne Node.js Node.js Submitted by haxatron1 haxatron1 Report CVE-2022-32213 bypass via obs-fold mechanic Full Report A considerable amount of...
Programme HackerOne PortSwigger Web Security PortSwigger Web Security Submitted by xctzn xctzn Report Business Logic, currency arbitrage - Possibility to...
Programme HackerOne Node.js Node.js Submitted by bnoordhuis bnoordhuis Report Weak randomness in WebCrypto keygen Full Report A considerable amount of...
Programme HackerOne Node.js Node.js Submitted by mhdawson mhdawson Report Node 18 reads openssl.cnf from /home/iojs/build/... upon startup on MacOS Full...
Programme HackerOne Node.js Node.js Submitted by shacharm shacharm Report HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding (improper...
Programme HackerOne Adobe Adobe Submitted by webcipher101 webcipher101 Report Reflected Cross site scripting via Swagger UI Full Report A considerable...
Programme HackerOne Linktree Linktree Submitted by dewcode91 dewcode91 Report A malicious admin can be able to permanently disable a Owner(Admin)...
Programme HackerOne Krisp Krisp Submitted by n0_m3rcy n0_m3rcy Report Full payment bypass to use premium subscription. Full Report A considerable...
Programme HackerOne Lark Technologies Lark Technologies Submitted by imran_nisar imran_nisar Report Ability to View Non-Permitted Admin Log Full Report A...
Programme HackerOne Lark Technologies Lark Technologies Submitted by imran_nisar imran_nisar Report Removed user can still view comments on the file/documents....
Programme HackerOne Lark Technologies Lark Technologies Submitted by imran_nisar imran_nisar Report No Csrf protection against sending invitation to join the...
Programme HackerOne Adobe Adobe Submitted by dreamer_eh dreamer_eh Report DOM XSS at `https://adobedocs.github.io/OAE_PartnerAPI/?configUrl={site}` due to outdated Swagger UI Full Report...
Programme HackerOne Automattic Automattic Submitted by ug0x01 ug0x01 Report IDOR able to buy a plan with lesser fee Full Report...
Programme HackerOne Hyperledger Hyperledger Submitted by mik-patient mik-patient Report CVE-2017-5929: Hyperledger - Arbitrary Deserialization of Untrusted Data Full Report A...
Programme HackerOne Shopify Shopify Submitted by noblesix noblesix Report XSS in www.shopify.com/markets?utm_source= Full Report A considerable amount of time and...
Programme HackerOne U.S. Dept Of Defense U.S. Dept Of Defense Submitted by ibrahim0936356 ibrahim0936356 Report Found Origin IP's Lead To...
Programme HackerOne U.S. Dept Of Defense U.S. Dept Of Defense Submitted by jr0ch17 jr0ch17 Report Receiving access request on @wearehackerone.com...
Programme HackerOne U.S. Dept Of Defense U.S. Dept Of Defense Submitted by sudi sudi Report Local file read at https:///...
Programme HackerOne U.S. Dept Of Defense U.S. Dept Of Defense Submitted by g4mb4 g4mb4 Report Broken access discloses users and...
