InfoSec News & Tutorials
Programme HackerOne Sony Sony Submitted by n0x496n n0x496n Report SSRF on http://www./crossdomain.php via url parameter Full Report A considerable amount of time and effort goes into maintaining this website, creating…
Programme HackerOne Sony Sony Submitted by lu3ky-13 lu3ky-13 Report Path Traversal issue at https:///blaze/ Full Report A considerable amount of time and effort goes into maintaining this website, creating backend…
Programme HackerOne LINE LINE Submitted by sirleeroyjenkins sirleeroyjenkins Report Blind SSRF in social-plugins.line.me Full Report A considerable amount of time and effort goes into maintaining this website, creating backend automation…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information rakuten vdp…
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by ydvanjali ydvanjali Report Bypass two-factor authentication Full Report A considerable amount of time and effort goes into maintaining…
Programme HackerOne Reddit Reddit Submitted by lu3ky-13 lu3ky-13 Report Open Redirect on www.redditinc.com via `failed` query param bypass after fixed bug #1257753 Full Report A considerable amount of time and…
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by lohigowda lohigowda Report Password Policy Restriction Bypass Full Report A considerable amount of time and effort goes into…
Programme HackerOne Reddit Reddit Submitted by heckintosh heckintosh Report Unrestricted File Upload on reddit.secure.force.com Full Report A considerable amount of time and effort goes into maintaining this website, creating backend…
Programme HackerOne Reddit Reddit Submitted by criptex criptex Report IDOR allows an attacker to modify the links of any user Full Report A considerable amount of time and effort goes…
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by path_network path_network Report Lack of Packet Sanitation in Goflow Results in Multiple DoS Attack Vectors and Bugs Full…
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report XSS in Widget Review Form Preview in settings Full Report A considerable amount of time and effort goes into maintaining this…
Programme HackerOne Yelp Yelp Submitted by raja404 raja404 Report Server-side request forgery (ssrf) Full Report A considerable amount of time and effort goes into maintaining this website, creating backend automation…
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by albertspedersen albertspedersen Report Take over subdomains of r2.dev using R2 custom domains Full Report A considerable amount of…
Programme HackerOne 8x8 8x8 Submitted by rajauzairabdullah rajauzairabdullah Report Directory Listing vulnerability on .packet8.net/php/include/ Full Report A considerable amount of time and effort goes into maintaining this website, creating backend…
Programme HackerOne Yelp Yelp Submitted by qualwin3001 qualwin3001 Report CORS Misconfiguration on Yelp Full Report A considerable amount of time and effort goes into maintaining this website, creating backend automation…
Programme HackerOne Node.js Node.js Submitted by zeyu2001 zeyu2001 Report DNS rebinding in --inspect (insufficient fix of CVE-2022-32212 affecting macOS devices) Full Report A considerable amount of time and effort goes…
Programme HackerOne Reddit Reddit Submitted by criptex criptex Report XSS Reflected on reddit.com via url path Full Report A considerable amount of time and effort goes into maintaining this website,…
Programme HackerOne Adobe Adobe Submitted by gdattacker gdattacker Report Main Domain Takeover at https://www.marketo.net/ Full Report A considerable amount of time and effort goes into maintaining this website, creating backend…
Programme HackerOne Basecamp Basecamp Submitted by fr4via fr4via Report com.basecamp.bc3 Webview Javascript Injection and JS bridge takeover Full Report A considerable amount of time and effort goes into maintaining this…
Programme HackerOne 8x8 8x8 Submitted by is- is- Report DLL Search-Order Hijacking Vulnerability in work-64-exe-v7.16.3-1.exe Full Report A considerable amount of time and effort goes into maintaining this website, creating…
Programme HackerOne GitLab GitLab Submitted by joaxcar joaxcar Report XSS in ZenTao integration affecting self hosted instances without strict CSP Full Report A considerable amount of time and effort goes…
Programme HackerOne Mattermost Mattermost Submitted by catenacyber catenacyber Report DOS: out of memory from gif through upload api Full Report A considerable amount of time and effort goes into maintaining…
Programme HackerOne Vanilla Vanilla Submitted by admin0x00 admin0x00 Report CORS Misconfiguration on vanillaforums.com Full Report A considerable amount of time and effort goes into maintaining this website, creating backend automation…
Programme HackerOne MTN Group MTN Group Submitted by sachinrajput sachinrajput Report There is no rate limit for SME REGISTRATION PORTAL Full Report A considerable amount of time and effort goes…