HackerOne Bug Bounty Disclosure: idor–[mtnmobad-mtnbusiness-com-ng]byinsomnia_hax
Programme HackerOne MTN Group MTN Group Submitted by insomnia_hax insomnia_hax Report IDOR Full Report A considerable amount of time and...
bug bounty
HackerOne Bug Bounty Disclosure: deny-of-service-via-malicious-content-typebybitk
Programme HackerOne Fastify Fastify Submitted by bitk bitk Report Deny of service via malicious Content-Type Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: cors-misconfiguration-on-trust-yelp-combyajayjachak
Programme HackerOne Yelp Yelp Submitted by ajayjachak ajayjachak Report CORS Misconfiguration on trust.yelp.com Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: relative-path-traversal-vulnerability-in-fabric-private-chaincodebybhaskar_ram
Programme HackerOne Hyperledger Hyperledger Submitted by bhaskar_ram bhaskar_ram Report Relative Path Traversal vulnerability in fabric-private-chaincode Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: email-address-exposure-via-gratipay-migration-toolbysuprnova
Programme HackerOne Liberapay Liberapay Submitted by suprnova suprnova Report Email Address Exposure via Gratipay Migration Tool Full Report A considerable...
HackerOne Bug Bounty Disclosure: path-traversal-issue-at-https:///blaze/bylu3ky-13
Programme HackerOne Sony Sony Submitted by lu3ky-13 lu3ky-13 Report Path Traversal issue at https:///blaze/ Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: ssrf-on-http://www-/crossdomain-php-via-url-parameterbyn0x496n
Programme HackerOne Sony Sony Submitted by n0x496n n0x496n Report SSRF on http://www./crossdomain.php via url parameter Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: blind-ssrf-in-social-plugins-line-mebysirleeroyjenkins
Programme HackerOne LINE LINE Submitted by sirleeroyjenkins sirleeroyjenkins Report Blind SSRF in social-plugins.line.me Full Report A considerable amount of time...
BugCrowd Bug Bounty Disclosure: – Open Redirect using redirect-uri parameter in the URL leads to Mass Information Disclosure of all sensitive Information collected during Verification. – By jeetbhdr
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
HackerOne Bug Bounty Disclosure: bypass-two-factor-authenticationbyydvanjali
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by ydvanjali ydvanjali Report Bypass two-factor authentication Full Report...
HackerOne Bug Bounty Disclosure: password-policy-restriction-bypassbylohigowda
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by lohigowda lohigowda Report Password Policy Restriction Bypass Full...
HackerOne Bug Bounty Disclosure: idor-allows-an-attacker-to-modify-the-links-of-any-userbycriptex
Programme HackerOne Reddit Reddit Submitted by criptex criptex Report IDOR allows an attacker to modify the links of any user...
HackerOne Bug Bounty Disclosure: unrestricted-file-upload-on-reddit-secure-force-combyheckintosh
Programme HackerOne Reddit Reddit Submitted by heckintosh heckintosh Report Unrestricted File Upload on reddit.secure.force.com Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: open-redirect-on-www-redditinc-com-via-`failed`-query-param-bypass-after-fixed-bug-#1257753bylu3ky-13
Programme HackerOne Reddit Reddit Submitted by lu3ky-13 lu3ky-13 Report Open Redirect on www.redditinc.com via `failed` query param bypass after fixed...
HackerOne Bug Bounty Disclosure: lack-of-packet-sanitation-in-goflow-results-in-multiple-dos-attack-vectors-and-bugsbypath_network
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by path_network path_network Report Lack of Packet Sanitation in...
HackerOne Bug Bounty Disclosure: xss-in-widget-review-form-preview-in-settingsbypenguinshelp
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report XSS in Widget Review Form Preview in settings Full Report A...
HackerOne Bug Bounty Disclosure: take-over-subdomains-of-r2-dev-using-r2-custom-domainsbyalbertspedersen
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by albertspedersen albertspedersen Report Take over subdomains of r2.dev...
HackerOne Bug Bounty Disclosure: server-side-request-forgery–(ssrf)byraja404
Programme HackerOne Yelp Yelp Submitted by raja404 raja404 Report Server-side request forgery (ssrf) Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: directory-listing-vulnerability-on–packet8-net/php/include/byrajauzairabdullah
Programme HackerOne 8x8 8x8 Submitted by rajauzairabdullah rajauzairabdullah Report Directory Listing vulnerability on .packet8.net/php/include/ Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: dns-rebinding-in—inspect-(insufficient-fix-of-cve-2022-32212-affecting-macos-devices)byzeyu2001
Programme HackerOne Node.js Node.js Submitted by zeyu2001 zeyu2001 Report DNS rebinding in --inspect (insufficient fix of CVE-2022-32212 affecting macOS devices)...
HackerOne Bug Bounty Disclosure: cors-misconfiguration-on-yelpbyqualwin3001
Programme HackerOne Yelp Yelp Submitted by qualwin3001 qualwin3001 Report CORS Misconfiguration on Yelp Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: xss-reflected-on-reddit-com-via-url-pathbycriptex
Programme HackerOne Reddit Reddit Submitted by criptex criptex Report XSS Reflected on reddit.com via url path Full Report A considerable...
HackerOne Bug Bounty Disclosure: main-domain-takeover-at–https://www-marketo-net/bygdattacker
Programme HackerOne Adobe Adobe Submitted by gdattacker gdattacker Report Main Domain Takeover at https://www.marketo.net/ Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: com-basecamp-bc3-webview-javascript-injection-and-js-bridge-takeoverbyfr4via
Programme HackerOne Basecamp Basecamp Submitted by fr4via fr4via Report com.basecamp.bc3 Webview Javascript Injection and JS bridge takeover Full Report A...
