BugCrowd Bug Bounty Disclosure: – Reflected XSS via HTML Injection – By Poc-as
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne MTN Group MTN Group Submitted by aliyugombe aliyugombe Report String length restriction byepass at https://callerfeel.mtnonline.com/profile/feedback.html Full Report A...
Programme HackerOne Omise Omise Submitted by codeslayer137 codeslayer137 Report IDOR Payments Status Full Report A considerable amount of time and...
Programme HackerOne Semrush Semrush Submitted by a_d_a_m a_d_a_m Report API key (api.semrush.com) leak in JS-file Full Report A considerable amount...
Programme HackerOne MTN Group MTN Group Submitted by theranger theranger Report IDOR Leads To Account Takeover Without User Interaction Full...
Programme HackerOne Nextcloud Nextcloud Submitted by anna_larch anna_larch Report Password disclosure in initial setup of Mail App Full Report A...
Programme HackerOne Nextcloud Nextcloud Submitted by rtod rtod Report Federated share accepting/declining is not logged in audit log Full Report...
Programme HackerOne Nextcloud Nextcloud Submitted by nickvergessen nickvergessen Report Brute force protections don't work Full Report A considerable amount of...
Programme HackerOne MTN Group MTN Group Submitted by a-heybati a-heybati Report path traversal vulnerability in Grafana 8.x allows " local...
Programme HackerOne MTN Group MTN Group Submitted by harrisoft harrisoft Report Weak/Auto Fill Password Full Report A considerable amount of...
Programme HackerOne Nextcloud Nextcloud Submitted by eg42 eg42 Report Unauthenticated SSRF in 3rd party module "cerdic/csstidy" Full Report A considerable...
Programme HackerOne MTN Group MTN Group Submitted by drak3hft7 drak3hft7 Report Wordpress users disclosure from json and xml file Full...
Programme HackerOne Acronis Acronis Submitted by mrccrqr mrccrqr Report Any expired reset password link can still be used to reset...
Programme HackerOne Adobe Adobe Submitted by aneeeketh aneeeketh Report API Key reported in #1465145 not rotated and thus is still...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by lohigowda lohigowda Report Blind SSRF on platform.dash.cloudflare.com Due...
Programme HackerOne curl curl Submitted by haxatron1 haxatron1 Report CVE-2022-35252: control code in cookie denial of service Full Report A...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by motu-vai motu-vai Report Enable 2Fa verification without verifying...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne GitLab GitLab Submitted by mega7 mega7 Report Unauthorized access Full Report A considerable amount of time and effort...
Programme HackerOne Stripo Inc Stripo Inc Submitted by deb0con deb0con Report Non-revoked API Key Information disclosure via Stripo_report() Full Report...