HackerOne Bug Bounty Disclosure: stored-xss-on-tiktok-adsbysinayeganeh
Programme HackerOne TikTok TikTok Submitted by sinayeganeh sinayeganeh Report Stored XSS on TikTok Ads Full Report A considerable amount of...
Bug Bounty
HackerOne Bug Bounty Disclosure: cross-site-scripting-vulnerability-in-fabric-sdk-py-source-codebybhaskar_ram
Programme HackerOne Hyperledger Hyperledger Submitted by bhaskar_ram bhaskar_ram Report Cross Site Scripting Vulnerability in fabric-sdk-py source code Full Report A...
BugCrowd Bug Bounty Disclosure: P1 – Critical Local File Read in Electron Desktop App – By Renwa
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
HackerOne Bug Bounty Disclosure: idor-allowing-to-read-another-user’s-token-on-the-social-media-ads-servicebya_d_a_m
Programme HackerOne Semrush Semrush Submitted by a_d_a_m a_d_a_m Report IDOR allowing to read another user's token on the Social Media...
HackerOne Bug Bounty Disclosure: reflected-xss-at-https://stories-showmax-com/wp-content/themes/theme-internal_ss/blocks/ajax/a-php-via-`ss_country_filter`-parambymiron666
Programme HackerOne Showmax Showmax Submitted by miron666 miron666 Report Reflected XSS at https://stories.showmax.com/wp-content/themes/theme-internal_ss/blocks/ajax/a.php via `ss_country_filter` param Full Report A considerable...
HackerOne Bug Bounty Disclosure: disable-xmlrpc-php-filebysohelahmed786
Programme HackerOne Top Echelon Software Top Echelon Software Submitted by sohelahmed786 sohelahmed786 Report Disable xmlrpc.php file Full Report A considerable...
BugCrowd Bug Bounty Disclosure: P1 – Backend Stock access which can be accessed to the admin – By KennY-S
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: P4 – HTML Injection in email when deactivate a user – By mega7
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: P4 – Publisher owner doesn’t able to delete low privilege user – By AlWaYsHuNt
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: P4 – HTML Injection in meeting owner email – By mega7
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
HackerOne Bug Bounty Disclosure: redirection-in-repeater-&-intruder-tabbymr_vrush
Programme HackerOne PortSwigger Web Security PortSwigger Web Security Submitted by mr_vrush mr_vrush Report Redirection in Repeater & Intruder Tab Full...
HackerOne Bug Bounty Disclosure: read-only-administrator-can-change-agent-update-settingsbymega7
Programme HackerOne Acronis Acronis Submitted by mega7 mega7 Report Read-only administrator can change agent update settings Full Report A considerable...
HackerOne Bug Bounty Disclosure: many-commands-can-be-manipulated-to-delete-identities-or-affiliationsbycet2000
Programme HackerOne Hyperledger Hyperledger Submitted by cet2000 cet2000 Report many commands can be manipulated to delete identities or affiliations Full...
HackerOne Bug Bounty Disclosure: xmlrpc-php-file-is-enable-it-will-used-for-bruteforce-attack-and-denial-of-service(dos)byanonymmert12
Programme HackerOne Top Echelon Software Top Echelon Software Submitted by anonymmert12 anonymmert12 Report xmlrpc.php FILE IS enable it will used...
HackerOne Bug Bounty Disclosure: lack-of-rate-limit-while-joining-video-call-in-talk-section-which-is-password-protectedbyerror2001
Programme HackerOne Nextcloud Nextcloud Submitted by error2001 error2001 Report Lack of Rate limit while joining video call in talk section...
HackerOne Bug Bounty Disclosure: http-put-method-is-enabled-downloader-ratelimited-mebycodeslayer137
Programme HackerOne RATELIMITED RATELIMITED Submitted by codeslayer137 codeslayer137 Report HTTP PUT method is enabled downloader.ratelimited.me Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: anonymous-access-control—payments-statusbycodeslayer137
Programme HackerOne Omise Omise Submitted by codeslayer137 codeslayer137 Report Anonymous access control - Payments Status Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: unrestricted-file-upload-blind-stored-xss–in-subdomain-ads-tiktok-combymrzheev
Programme HackerOne TikTok TikTok Submitted by mrzheev mrzheev Report Unrestricted File Upload Blind Stored Xss in subdomain ads.tiktok.com Full Report...
HackerOne Bug Bounty Disclosure: sensei-lms-idor-to-send-messagebyghimire_veshraj
Programme HackerOne Automattic Automattic Submitted by ghimire_veshraj ghimire_veshraj Report Sensei LMS IDOR to send message Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: unauthenticated-private-messages-disclosure-via-wordpress-rest-apibyghimire_veshraj
Programme HackerOne Automattic Automattic Submitted by ghimire_veshraj ghimire_veshraj Report Unauthenticated Private Messages DIsclosure via wordpress Rest API Full Report A...
HackerOne Bug Bounty Disclosure: xss-in-redditmedia-com-can-compromise-data-of-reddit-combykeer0k
Programme HackerOne Reddit Reddit Submitted by keer0k keer0k Report XSS in redditmedia.com can compromise data of reddit.com Full Report A...
HackerOne Bug Bounty Disclosure: found-origin-ip’s-lead-to-access-to-gitlabbym-narayanan
Programme HackerOne GitLab GitLab Submitted by m-narayanan m-narayanan Report Found Origin IP's lead to access to gitlab Full Report A...
HackerOne Bug Bounty Disclosure: one-click-account-hijack-for-anyone-using-apple-sign-in-with-reddit,-due-to-response-type-switch-+-leaking-href-to-xss-on-www-redditmedia-combyfransrosen
Programme HackerOne Reddit Reddit Submitted by fransrosen fransrosen Report One-click account hijack for anyone using Apple sign-in with Reddit, due...
HackerOne Bug Bounty Disclosure: race-condition-on-https://judge-me/peoplebynetboom
Programme HackerOne Judge.me Judge.me Submitted by netboom netboom Report Race condition on https://judge.me/people Full Report A considerable amount of time...
