Bug Bounty

HackerOne Bug Bounty Disclosure: b-mk-dx-improper-metadata-parsing-b-crazy-man

August 17, 2023

Company Name: b'Nintendo' Company HackerOne URL: https://hackerone.com/nintendo Submitted By:b'crazy_man123'Link to Submitters Profile:https://hackerone.com/b'crazy_man123' Report Title:b' Improper metadata parsing'Report Link:https://hackerone.com/reports/1688309Date Submitted:17 August...

HackerOne Bug Bounty Disclosure: b-mk-dx-improper-metadata-validation-b-crazy-man

August 17, 2023

Company Name: b'Nintendo' Company HackerOne URL: https://hackerone.com/nintendo Submitted By:b'crazy_man123'Link to Submitters Profile:https://hackerone.com/b'crazy_man123' Report Title:b' Improper metadata validation 2'Report Link:https://hackerone.com/reports/1812732Date Submitted:17...

HackerOne Bug Bounty Disclosure: b-crlf-to-xss-open-redirection-b-ashrafabdelrazik

August 16, 2023

Company Name: b'TikTok' Company HackerOne URL: https://hackerone.com/tiktok Submitted By:b'ashrafabdelrazik'Link to Submitters Profile:https://hackerone.com/b'ashrafabdelrazik' Report Title:b'CRLF to XSS & Open Redirection'Report Link:https://hackerone.com/reports/2012519Date...

HackerOne Bug Bounty Disclosure: b-unexpected-deserialization-in-kredis-b-ooooooo-q

August 16, 2023

Company Name: b'Ruby on Rails' Company HackerOne URL: https://hackerone.com/rails Submitted By:b'ooooooo_q'Link to Submitters Profile:https://hackerone.com/b'ooooooo_q' Report Title:b'Unexpected deserialization in Kredis'Report Link:https://hackerone.com/reports/1702859Date...

HackerOne Bug Bounty Disclosure: b-renaming-aliasing-relative-symbolic-links-potentially-redirects-them-to-supposedly-inaccessible-locations-b-tniessen

August 15, 2023

Company Name: b'Node.js' Company HackerOne URL: https://hackerone.com/nodejs Submitted By:b'tniessen'Link to Submitters Profile:https://hackerone.com/b'tniessen' Report Title:b'Renaming/aliasing relative symbolic links potentially redirects them...

HackerOne Bug Bounty Disclosure: b-yelp-com-xss-ato-via-login-keylogger-link-google-account-b-lil-endian

August 15, 2023

Company Name: b'Yelp' Company HackerOne URL: https://hackerone.com/yelp Submitted By:b'lil_endian'Link to Submitters Profile:https://hackerone.com/b'lil_endian' Report Title:b'yelp.com XSS ATO (via login keylogger, link...

HackerOne Bug Bounty Disclosure: b-path-traversal-allows-tricking-the-talk-android-app-into-writing-files-into-it-s-root-directory-b-fr-via

August 14, 2023

Company Name: b'Nextcloud' Company HackerOne URL: https://hackerone.com/nextcloud Submitted By:b'fr4via'Link to Submitters Profile:https://hackerone.com/b'fr4via' Report Title:b"Path traversal allows tricking the Talk Android...

HackerOne Bug Bounty Disclosure: b-html-injection-on-newsroom-snap-com-via-search-q-b-jotita

August 14, 2023

Company Name: b'Snapchat' Company HackerOne URL: https://hackerone.com/snapchat Submitted By:b'jotita3'Link to Submitters Profile:https://hackerone.com/b'jotita3' Report Title:b'HTML injection on newsroom.snap.com/* via search?q=1'Report Link:https://hackerone.com/reports/2018615Date...

HackerOne Bug Bounty Disclosure: b-sql-injection-in-version-and-below-b-cyberinsane

August 12, 2023

Company Name: b'ImpressCMS' Company HackerOne URL: https://hackerone.com/impresscms Submitted By:b'cyberinsane'Link to Submitters Profile:https://hackerone.com/b'cyberinsane' Report Title:b'SQL Injection in version 1.4.3 and below'Report...

HackerOne Bug Bounty Disclosure: b-wiiu-switch-remote-code-execution-inside-the-enl-library-b-crazy-man

August 11, 2023

HackerOne Bug Bounty Disclosure: b-hackerone-support-system-doesn-t-require-any-authentication-may-lead-unauthorized-action-b-rafsanzami

August 11, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'rafsanzami'Link to Submitters Profile:https://hackerone.com/b'rafsanzami' Report Title:b"HackerOne Support System Doesn't Require Any Authentication...

HackerOne Bug Bounty Disclosure: b-hackerone-all-private-program-name-leaked-to-public-via-collaborator-or-attacker-can-easily-dump-all-private-program-names-through-collaborator-b-hackit-bharat

August 11, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'hackit_bharat'Link to Submitters Profile:https://hackerone.com/b'hackit_bharat' Report Title:b'Hackerone All Private Program Name Leaked to...

HackerOne Bug Bounty Disclosure: b-rxss-at-image-hackerone-live-via-the-url-parameter-b-todayisnew

August 11, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'todayisnew'Link to Submitters Profile:https://hackerone.com/b'todayisnew' Report Title:b'RXSS at image.hackerone.live via the `url` parameter'Report...

HackerOne Bug Bounty Disclosure: b-nginx-alias-traversal-babel-bluetab-net-b-dk-trin

August 11, 2023

Company Name: b'IBM' Company HackerOne URL: https://hackerone.com/ibm Submitted By:b'dk4trin'Link to Submitters Profile:https://hackerone.com/b'dk4trin' Report Title:b'Nginx Alias Traversal - babel.bluetab.net'Report Link:https://hackerone.com/reports/2061826Date Submitted:11...

HackerOne Bug Bounty Disclosure: b-create-miscellaneous-support-ticket-on-anyone-s-account-through-support-hackerone-com-email-b-sayaanalam

August 11, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'sayaanalam'Link to Submitters Profile:https://hackerone.com/b'sayaanalam' Report Title:b"Create miscellaneous support ticket on anyone's account...

HackerOne Bug Bounty Disclosure: b-idor-in-channel-id-leads-to-customer-email-disclosure-on-https-video-ibm-com-b-tusnj

August 11, 2023

Company Name: b'IBM' Company HackerOne URL: https://hackerone.com/ibm Submitted By:b'tusnj'Link to Submitters Profile:https://hackerone.com/b'tusnj' Report Title:b'IDOR in channel ID leads to customer...

HackerOne Bug Bounty Disclosure: b-permission-model-bypass-by-specifying-a-path-traversal-sequence-in-a-buffer-b-haxatron

August 11, 2023

Company Name: b'Node.js' Company HackerOne URL: https://hackerone.com/nodejs Submitted By:b'haxatron1'Link to Submitters Profile:https://hackerone.com/b'haxatron1' Report Title:b'Permission model bypass by specifying a path...

HackerOne Bug Bounty Disclosure: b-fs-mkdtemp-and-fs-mkdtempsync-are-missing-getvalidatedpath-checks-b-haxatron

August 11, 2023

HackerOne Bug Bounty Disclosure: b-node-reads-openssl-cnf-from-home-iojs-build-upon-startup-b-msvrmiscovet

August 11, 2023

Company Name: b'Node.js' Company HackerOne URL: https://hackerone.com/nodejs Submitted By:b'msvrmiscovet'Link to Submitters Profile:https://hackerone.com/b'msvrmiscovet' Report Title:b'Node 18 reads openssl.cnf from /home/iojs/build/... upon...

HackerOne Bug Bounty Disclosure: b-policy-restricted-modules-can-escalate-to-higher-privileges-by-impersonating-other-modules-in-a-policy-list-using-module-constructor-createrequire-b-haxatron

August 11, 2023

HackerOne Bug Bounty Disclosure: b-dns-rebinding-in-inspect-again-via-invalid-ip-addresses-b-haxatron

August 11, 2023

HackerOne Bug Bounty Disclosure: b-improper-restriction-of-excessive-authentication-attempts-on-webdav-endpoint-b-unknownsh

August 10, 2023

Company Name: b'Nextcloud' Company HackerOne URL: https://hackerone.com/nextcloud Submitted By:b'unknownsh'Link to Submitters Profile:https://hackerone.com/b'unknownsh' Report Title:b'Improper restriction of excessive authentication attempts on...

HackerOne Bug Bounty Disclosure: b-notes-attachments-render-html-in-preview-mode-b-tareq

August 10, 2023

Company Name: b'Nextcloud' Company HackerOne URL: https://hackerone.com/nextcloud Submitted By:b'tareq4'Link to Submitters Profile:https://hackerone.com/b'tareq4' Report Title:b'Notes attachments render HTML in preview mode'Report...

HackerOne Bug Bounty Disclosure: b-any-non-admin-user-from-an-instance-can-destroy-any-user-and-or-global-external-filesystem-b-cult

August 10, 2023

Company Name: b'Nextcloud' Company HackerOne URL: https://hackerone.com/nextcloud Submitted By:b'cult'Link to Submitters Profile:https://hackerone.com/b'cult' Report Title:b'Any (non-admin) user from an instance can...

Bug Bounty

HackerOne Bug Bounty Disclosure: b-mk-dx-improper-metadata-parsing-b-crazy-man

HackerOne Bug Bounty Disclosure: b-mk-dx-improper-metadata-validation-b-crazy-man

HackerOne Bug Bounty Disclosure: b-crlf-to-xss-open-redirection-b-ashrafabdelrazik

HackerOne Bug Bounty Disclosure: b-unexpected-deserialization-in-kredis-b-ooooooo-q

HackerOne Bug Bounty Disclosure: b-renaming-aliasing-relative-symbolic-links-potentially-redirects-them-to-supposedly-inaccessible-locations-b-tniessen

HackerOne Bug Bounty Disclosure: b-yelp-com-xss-ato-via-login-keylogger-link-google-account-b-lil-endian

HackerOne Bug Bounty Disclosure: b-path-traversal-allows-tricking-the-talk-android-app-into-writing-files-into-it-s-root-directory-b-fr-via

HackerOne Bug Bounty Disclosure: b-html-injection-on-newsroom-snap-com-via-search-q-b-jotita

HackerOne Bug Bounty Disclosure: b-sql-injection-in-version-and-below-b-cyberinsane

HackerOne Bug Bounty Disclosure: b-wiiu-switch-remote-code-execution-inside-the-enl-library-b-crazy-man

HackerOne Bug Bounty Disclosure: b-hackerone-support-system-doesn-t-require-any-authentication-may-lead-unauthorized-action-b-rafsanzami

HackerOne Bug Bounty Disclosure: b-hackerone-all-private-program-name-leaked-to-public-via-collaborator-or-attacker-can-easily-dump-all-private-program-names-through-collaborator-b-hackit-bharat

HackerOne Bug Bounty Disclosure: b-rxss-at-image-hackerone-live-via-the-url-parameter-b-todayisnew

HackerOne Bug Bounty Disclosure: b-nginx-alias-traversal-babel-bluetab-net-b-dk-trin

HackerOne Bug Bounty Disclosure: b-create-miscellaneous-support-ticket-on-anyone-s-account-through-support-hackerone-com-email-b-sayaanalam

HackerOne Bug Bounty Disclosure: b-idor-in-channel-id-leads-to-customer-email-disclosure-on-https-video-ibm-com-b-tusnj

HackerOne Bug Bounty Disclosure: b-permission-model-bypass-by-specifying-a-path-traversal-sequence-in-a-buffer-b-haxatron

HackerOne Bug Bounty Disclosure: b-fs-mkdtemp-and-fs-mkdtempsync-are-missing-getvalidatedpath-checks-b-haxatron

HackerOne Bug Bounty Disclosure: b-node-reads-openssl-cnf-from-home-iojs-build-upon-startup-b-msvrmiscovet

HackerOne Bug Bounty Disclosure: b-policy-restricted-modules-can-escalate-to-higher-privileges-by-impersonating-other-modules-in-a-policy-list-using-module-constructor-createrequire-b-haxatron

HackerOne Bug Bounty Disclosure: b-dns-rebinding-in-inspect-again-via-invalid-ip-addresses-b-haxatron

HackerOne Bug Bounty Disclosure: b-improper-restriction-of-excessive-authentication-attempts-on-webdav-endpoint-b-unknownsh

HackerOne Bug Bounty Disclosure: b-notes-attachments-render-html-in-preview-mode-b-tareq

HackerOne Bug Bounty Disclosure: b-any-non-admin-user-from-an-instance-can-destroy-any-user-and-or-global-external-filesystem-b-cult

CVE Alert: CVE-2025-23270

CVE Alert: CVE-2025-1700

CVE Alert: CVE-2025-23267

CVE Alert: CVE-2025-23266

CVE Alert: CVE-2025-1729

You may have missed