HackerOne Bug Bounty Disclosure: disclose-stuff-member-name-and-make-actions-byzambo
Programme HackerOne Shopify Submitted by zambo Report Disclose STUFF member name and make actions.
Read moreProgramme HackerOne Shopify Submitted by zambo Report Disclose STUFF member name and make actions.
Read moreProgramme HackerOne Consensys Submitted by polem4rch Report Public Postman Api Collection Leaks Internal access to https://assets-paris-dev.codefi.network/
Read moreProgramme HackerOne Shopify Submitted by zambo Report Disclose customer orders details by shopify chat application.
Read moreProgramme HackerOne GitHub Security Lab Submitted by luchua Report [Java]: CWE-321 – Query to detect hardcoded JWT secret keys
Read moreProgramme HackerOne GitHub Security Lab Submitted by luchua Report [Java]: CWE-552 Add sources and sinks to detect unsafe getResource calls
Read moreProgramme HackerOne GitHub Security Lab Submitted by ihsinme Report [CPP]: Add query for CWE-754: Improper Check for Unusual or Exceptional
Read moreProgramme HackerOne curl Submitted by nyymi Report Cookie injection from non-secure context
Read moreProgramme HackerOne GitHub Security Lab Submitted by ihsinme Report [CPP]: Add query for CWE-190: Integer Overflow or Wraparound when using
Read moreProgramme HackerOne GitHub Security Lab Submitted by luchua Report [Java] CWE-016: Query to detect insecure configuration of Spring Boot Actuator
Read moreProgramme HackerOne curl Submitted by pappacoda Report Memory leak in CURLOPT_XOAUTH2_BEARER
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreProgramme HackerOne Recorded Future Submitted by subuganz Report Storage of old passwords in plain text format
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreProgramme HackerOne Alohi Submitted by shamim_12__ Report Misconfigured Rate Limit in Sending Notifications to the Victims Phone Via the Endpoint
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreProgramme HackerOne Reddit Submitted by abhiramsita Report Reflected xss in https://sh.reddit.com
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read moreProgramme HackerOne Palantir Public Submitted by codermak Report Github Account Takeover which is used as gradle vcs in “github.com/palantir/gradle-launch-config-plugin”
Read moreThe below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct
Read more