Programme HackerOne Automattic Automattic Submitted by 0xwega74 0xwega74 Report Stored XSS on app.crowdsignal.com your-subdomain.crowdsignal.net via Thank You Header Full Report...
Programme HackerOne Nextcloud Nextcloud Submitted by rullzer rullzer Report Download permissions can be changed by resharer Full Report A considerable...
Programme HackerOne Krisp Krisp Submitted by mikemyers mikemyers Report SQL Injection + Insecure Deserialization leads to Remote Code Execution on...
Programme HackerOne Node.js Node.js Submitted by timon8 timon8 Report CRLF Injection in Nodejs undici via host Full Report A considerable...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne U.S. Department of State U.S. Department of State Submitted by ismailu ismailu Report xss and html injection on...
Programme HackerOne curl curl Submitted by monnerat monnerat Report CVE-2023-23916: HTTP multi-header compression denial of service Full Report A considerable...
Programme HackerOne Twitter Twitter Submitted by eissen5c eissen5c Report The Deleted Polls is Still Accessable after 30 Days Full Report...
Programme HackerOne U.S. Dept Of Defense U.S. Dept Of Defense Submitted by spell1 spell1 Report Splunk Sensitive Information Disclosure @axiellstore.usahec.org...
Programme HackerOne HackerOne HackerOne Submitted by syjane syjane Report HackerOne Undisclosed Report Leak via PoC of Full Disclosure on Hacktivity...
Programme HackerOne Nextcloud Nextcloud Submitted by lukasreschke lukasreschke Report Desktop client can be tricked into opening/executing local files when clicking...
Programme HackerOne 8x8 Bounty 8x8 Bounty Submitted by ex0dus-0x ex0dus-0x Report Jitsi Desktop Client RCE By Interacting with Malicious URL...
Programme HackerOne EXNESS EXNESS Submitted by ashwarya ashwarya Report Double forward slash breaks server-side restrictions & allows access to prohibited...
Programme HackerOne Nextcloud Nextcloud Submitted by obitorasu obitorasu Report SSRF via filter bypass due to lax checking on IPs Full...
Programme HackerOne JetBlue JetBlue Submitted by doosec101 doosec101 Report Open Redirection Full Report A considerable amount of time and effort...
Programme HackerOne JetBlue JetBlue Submitted by doosec101 doosec101 Report Access to tomcat-manager with default creds Full Report A considerable amount...
Programme HackerOne TikTok TikTok Submitted by amans amans Report TikTok 2FA Bypass Full Report A considerable amount of time and...
Programme HackerOne Sorare Sorare Submitted by gokulsk gokulsk Report Mystery with a leaked token and Reusability of email confirmation link...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne Judge.me Judge.me Submitted by vj1naruto vj1naruto Report Stored XSS in Public Profile Reviews Full Report A considerable amount...
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report Improper Access Control in Ali Express Importer Full Report A considerable...
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report Self-XSS due to image URL can be eploited via XSSJacking techniques...
