HackerOne Bug Bounty Disclosure: html-injection-via-email-sharebylu3ky-13
Programme HackerOne TikTok TikTok Submitted by lu3ky-13 lu3ky-13 Report HTML Injection via Email Share Full Report A considerable amount of...
bug bounty
HackerOne Bug Bounty Disclosure: [doc-rt-informaticacloud-com]-arbitrary-file-reading-via-double-url-encodebybigbear_
Programme HackerOne Informatica Informatica Submitted by bigbear_ bigbear_ Report Arbitrary File Reading via Double URL Encode Full Report A considerable...
HackerOne Bug Bounty Disclosure: reflected-xss-on-panther-combyibrahimatix0x01
Programme HackerOne Panther Labs Panther Labs Submitted by ibrahimatix0x01 ibrahimatix0x01 Report reflected XSS on panther.com Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: [doc-rt-informaticacloud-com]-reflected-xss-via-stack-stracebybigbear_
Programme HackerOne Informatica Informatica Submitted by bigbear_ bigbear_ Report Reflected XSS via Stack Strace Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: rack-cve-2022-30122:-denial-of-service-vulnerability-in-rack-multipart-parsingbyooooooo_q
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by ooooooo_q ooooooo_q Report Rack CVE-2022-30122: Denial of Service Vulnerability in...
HackerOne Bug Bounty Disclosure: cve-2022-32215—http-request-smuggling-due-to-incorrect-parsing-of-multi-line-transfer-encodingbyzeyu2001
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by zeyu2001 zeyu2001 Report CVE-2022-32215 - HTTP Request Smuggling Due to...
HackerOne Bug Bounty Disclosure: cve-2022-32213—http-request-smuggling-due-to-flawed-parsing-of-transfer-encodingbyzeyu2001
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by zeyu2001 zeyu2001 Report CVE-2022-32213 - HTTP Request Smuggling Due to...
HackerOne Bug Bounty Disclosure: cve-2022-32214—http-request-smuggling-due-to-improper-delimiting-of-header-fieldsbyzeyu2001
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by zeyu2001 zeyu2001 Report CVE-2022-32214 - HTTP Request Smuggling Due To...
HackerOne Bug Bounty Disclosure: lfi-via-jolokia-at-https://—:1293byshuvam321
Programme HackerOne 8x8 8x8 Submitted by shuvam321 shuvam321 Report LFI via Jolokia at https://...:1293 Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: html-injection-in-e-mail-not-resolved-()bythewikiii
Programme HackerOne Acronis Acronis Submitted by thewikiii thewikiii Report HTML Injection in E-mail Not Resolved () Full Report A considerable...
HackerOne Bug Bounty Disclosure: without-verifying-email-and-activate-account,-user-can-perform-all-action-which-are-not-supposed-to-be-donebytabaahi
Programme HackerOne Stripe Stripe Submitted by tabaahi tabaahi Report Without verifying email and activate account, user can perform all action...
HackerOne Bug Bounty Disclosure: subdomain-takeover-at-odoo-staging-exness-iobyomer
Programme HackerOne EXNESS EXNESS Submitted by omer omer Report subdomain takeover at odoo-staging.exness.io Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: cve-2019-11248-on-http://—:9100/debug/pprof/goroutinebymr_k0anti
Programme HackerOne 8x8 8x8 Submitted by mr_k0anti mr_k0anti Report CVE-2019-11248 on http://...:9100/debug/pprof/goroutine Full Report A considerable amount of time and...
HackerOne Bug Bounty Disclosure: unauth-mosquitto-(-client-emails,-ips,-license-keys-exposure-)bysecond_grade_pentester
Programme HackerOne Acronis Acronis Submitted by second_grade_pentester second_grade_pentester Report unauth mosquitto ( client emails, ips, license keys exposure ) Full...
HackerOne Bug Bounty Disclosure: cross-site-scripting-(dom-based)bythewikiii
Programme HackerOne OneWeb OneWeb Submitted by thewikiii thewikiii Report Cross-site scripting (DOM-based) Full Report A considerable amount of time and...
HackerOne Bug Bounty Disclosure: public-apache-tomcat-/examples-example-directorybymr_k0anti
Programme HackerOne 8x8 8x8 Submitted by mr_k0anti mr_k0anti Report Public Apache Tomcat /examples example directory Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: information-disclosure-(-google-sales-channel-)byhydraxanon82
Programme HackerOne Shopify Shopify Submitted by hydraxanon82 hydraxanon82 Report Information disclosure ( Google Sales Channel ) Full Report A considerable...
HackerOne Bug Bounty Disclosure: can-use-the-reddit-android-app-as-usual-even-though-revoking-the-access-of-it-from-reddit-combysateeshn
Programme HackerOne Reddit Reddit Submitted by sateeshn sateeshn Report Can use the Reddit android app as usual even though revoking...
HackerOne Bug Bounty Disclosure: post-based-reflected-xss-in-dailydeals-mtn-co-zabyshuvam321
Programme HackerOne MTN Group MTN Group Submitted by shuvam321 shuvam321 Report POST BASED REFLECTED XSS IN dailydeals.mtn.co.za Full Report A...
HackerOne Bug Bounty Disclosure: [h1-2102]-shopapps-query-from-the-graphql-at-/users/api-returns-all-existing-created-apps,-including-private-onesbyinhibitor181
Programme HackerOne Shopify Shopify Submitted by inhibitor181 inhibitor181 Report shopApps query from the graphql at /users/api returns all existing created...
HackerOne Bug Bounty Disclosure: add-me-email-address-authentication-bypassbyraajeevrathnam
Programme HackerOne LinkedIn LinkedIn Submitted by raajeevrathnam raajeevrathnam Report Add me email address Authentication bypass Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: undici-does-not-use-connect-or-otherwise-validate-upstream-https-certificates-when-using-a-proxybypimterry
Programme HackerOne Node.js Node.js Submitted by pimterry pimterry Report Undici does not use CONNECT or otherwise validate upstream HTTPS certificates...
HackerOne Bug Bounty Disclosure: one-click-xss-in-[www-shopify-com]bycomwrg
Programme HackerOne Shopify Shopify Submitted by comwrg comwrg Report One Click XSS in Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: [cve-2021-44228]-nps-acronis-com-is-vulnerable-to-the-recent-log4shell-0-daybyrhinestonecowboy
Programme HackerOne Acronis Acronis Submitted by rhinestonecowboy rhinestonecowboy Report nps.acronis.com is vulnerable to the recent log4shell 0-day Full Report A...
