Bug Bounty

hackerone

HackerOne Bug Bounty Disclosure: b-triager-team-members-can-edit-hacker-s-report-and-hacker-is-not-even-notified-b-abhhinavsecondary

August 31, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'abhhinavsecondary'Link to Submitters Profile:https://hackerone.com/b'abhhinavsecondary' Report Title:b"Triager/Team members can edit hacker's report and...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-triager-team-members-can-edit-hacker-s-report-and-hacker-is-not-even-notified-b-abhhinavsecondary
hackerone

HackerOne Bug Bounty Disclosure: b-response-manipulation-lead-to-bypass-verification-code-while-making-appointment-at-banfield-com-b-mo-giza

August 30, 2023

Company Name: b'Mars' Company HackerOne URL: https://hackerone.com/mars Submitted By:b'mo3giza'Link to Submitters Profile:https://hackerone.com/b'mo3giza' Report Title:b'Response Manipulation lead to bypass verification code...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-response-manipulation-lead-to-bypass-verification-code-while-making-appointment-at-banfield-com-b-mo-giza
hackerone

HackerOne Bug Bounty Disclosure: b-names-not-completely-redacted-despite-redact-the-names-of-the-involved-users-is-selected-b-japz

August 29, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'japz'Link to Submitters Profile:https://hackerone.com/b'japz' Report Title:b'Names not completely redacted despite "Redact the...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-names-not-completely-redacted-despite-redact-the-names-of-the-involved-users-is-selected-b-japz
hackerone

HackerOne Bug Bounty Disclosure: b-idor-delete-all-licenses-and-certifications-from-users-account-using-createorupdatehackercertification-graphql-query-b-callmed

August 29, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'callmed0_4'Link to Submitters Profile:https://hackerone.com/b'callmed0_4' Report Title:b'IDOR - Delete all Licenses and certifications...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-idor-delete-all-licenses-and-certifications-from-users-account-using-createorupdatehackercertification-graphql-query-b-callmed
hackerone

HackerOne Bug Bounty Disclosure: b-stored-xss-on-promo-indrive-com-b-kristoferent

August 28, 2023

Company Name: b'inDrive' Company HackerOne URL: https://hackerone.com/indrive Submitted By:b'kristoferent'Link to Submitters Profile:https://hackerone.com/b'kristoferent' Report Title:b'Stored XSS on promo.indrive.com'Report Link:https://hackerone.com/reports/2051085Date Submitted:28 August...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-stored-xss-on-promo-indrive-com-b-kristoferent
hackerone

HackerOne Bug Bounty Disclosure: b-http-request-smuggling-via-empty-headers-separated-by-cr-b-yadhukrishnam

August 28, 2023

Company Name: b'Internet Bug Bounty' Company HackerOne URL: https://hackerone.com/ibb Submitted By:b'yadhukrishnam'Link to Submitters Profile:https://hackerone.com/b'yadhukrishnam' Report Title:b'HTTP Request Smuggling via Empty...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-http-request-smuggling-via-empty-headers-separated-by-cr-b-yadhukrishnam
hackerone

HackerOne Bug Bounty Disclosure: b-staff-and-triage-can-modify-the-initial-post-of-a-report-including-of-already-disclosed-reports-b-zerotea

August 28, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'zerotea'Link to Submitters Profile:https://hackerone.com/b'zerotea' Report Title:b'Staff and Triage can modify the initial...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-staff-and-triage-can-modify-the-initial-post-of-a-report-including-of-already-disclosed-reports-b-zerotea
hackerone

HackerOne Bug Bounty Disclosure: b-unsanitized-input-goes-to-regex-function-leads-to-redos-that-make-request-hangs-b-shin

August 28, 2023

Company Name: b'Internet Bug Bounty' Company HackerOne URL: https://hackerone.com/ibb Submitted By:b'shin24'Link to Submitters Profile:https://hackerone.com/b'shin24' Report Title:b'unsanitized input goes to regex...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-unsanitized-input-goes-to-regex-function-leads-to-redos-that-make-request-hangs-b-shin
hackerone

HackerOne Bug Bounty Disclosure: b-improper-access-control-on-linkedin-page-b-cybergoddess

August 24, 2023

Company Name: b'LinkedIn' Company HackerOne URL: https://hackerone.com/linkedin Submitted By:b'cybergoddess'Link to Submitters Profile:https://hackerone.com/b'cybergoddess' Report Title:b'Improper access control on Linkedin Page'Report Link:https://hackerone.com/reports/1587246Date...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-improper-access-control-on-linkedin-page-b-cybergoddess
hackerone

HackerOne Bug Bounty Disclosure: b-a-unverified-user-can-post-newsletter-which-is-not-allowed-through-application-ui-b-tushar

August 24, 2023

Company Name: b'LinkedIn' Company HackerOne URL: https://hackerone.com/linkedin Submitted By:b'tushar6378'Link to Submitters Profile:https://hackerone.com/b'tushar6378' Report Title:b'A Unverified User Can Post Newsletter (Which...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-a-unverified-user-can-post-newsletter-which-is-not-allowed-through-application-ui-b-tushar
hackerone

HackerOne Bug Bounty Disclosure: b-attackers-can-use-trial-premium-only-by-paying-idr-from-the-original-price-of-idr-per-month-b-find-me-here

August 24, 2023

Company Name: b'LinkedIn' Company HackerOne URL: https://hackerone.com/linkedin Submitted By:b'find_me_here'Link to Submitters Profile:https://hackerone.com/b'find_me_here' Report Title:b'Attackers can use TRIAL Premium only by...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-attackers-can-use-trial-premium-only-by-paying-idr-from-the-original-price-of-idr-per-month-b-find-me-here
hackerone

HackerOne Bug Bounty Disclosure: b-an-attacker-can-flag-draft-job-posts-and-can-disclose-the-draft-job-posts-details-similar-to-resolved-report-b-tushar

August 24, 2023

Company Name: b'LinkedIn' Company HackerOne URL: https://hackerone.com/linkedin Submitted By:b'tushar6378'Link to Submitters Profile:https://hackerone.com/b'tushar6378' Report Title:b'An Attacker Can Flag Draft Job Posts...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-an-attacker-can-flag-draft-job-posts-and-can-disclose-the-draft-job-posts-details-similar-to-resolved-report-b-tushar

You may have missed

image

CVE Alert: CVE-2025-4162

May 2, 2025
image

CVE Alert: CVE-2025-4161

May 2, 2025
image

CVE Alert: CVE-2025-27007

May 2, 2025
image

CVE Alert: CVE-2025-1529

May 2, 2025
image

CVE Alert: CVE-2025-3890

May 2, 2025