Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by albertspedersen albertspedersen Report Using special IPv4-mapped IPv6 addresses...
Programme HackerOne Slack Slack Submitted by pisarenko pisarenko Report XSS on link and window.opener Full Report A considerable amount of...
Programme HackerOne KAYAK KAYAK Submitted by retr02332 retr02332 Report 1 click Account takeover via deeplink in Full Report A considerable...
Programme HackerOne HackerOne HackerOne Submitted by reigertje reigertje Report Private information exposed through GraphQL search endpoints aggregates Full Report A...
Programme HackerOne ownCloud ownCloud Submitted by atorralba atorralba Report GitHub Security Lab (GHSL) Vulnerability Report: Insufficient path validation in ReceiveExternalFilesActivity.java...
Programme HackerOne Mattermost Mattermost Submitted by annonmous annonmous Report Uninstalling Mattermost Launcher for Windows (64-bit), then reinstalling keeps you logged...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne GitHub GitHub Submitted by vaib25vicky vaib25vicky Report Github app Privilege Escalation to Administrator/Owner of the Organization Full Report...
Programme HackerOne Nextcloud Nextcloud Submitted by systemkeeper systemkeeper Report Reference caching can leak data to unauthorized users Full Report A...
Programme HackerOne Nextcloud Nextcloud Submitted by lukasreschke lukasreschke Report CSRF vulnerability in Nextcloud Desktop Client 3.6.1 on Windows when clicking...
Programme HackerOne Node.js Node.js Submitted by algisec1337 algisec1337 Report Take over subdomain undici.nodejs.org.cdn.cloudflare.net Full Report A considerable amount of time...
Programme HackerOne Hiro Hiro Submitted by bug_vs_me bug_vs_me Report Security Issue into Wallet lock protection Full Report A considerable amount...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne Acronis Acronis Submitted by parshwa_21 parshwa_21 Report Cross Origin Resource Sharing Misconfiguration Full Report A considerable amount of...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by smither smither Report Origin IP address disclosure through...
Programme HackerOne Nextcloud Nextcloud Submitted by ctulhu ctulhu Report Passcode bypass on Talk Android app Full Report A considerable amount...
Programme HackerOne Nextcloud Nextcloud Submitted by supr4s supr4s Report Possibility to delete files attached to deck cards of other users...
Programme HackerOne Nextcloud Nextcloud Submitted by error_2001 error_2001 Report Missing character limitation allows to put generate a database error Full...
Programme HackerOne HackerOne HackerOne Submitted by zeyu2001 zeyu2001 Report Race condition in joining CTF group Full Report A considerable amount...
Programme HackerOne Nextcloud Nextcloud Submitted by lukasreschkenc lukasreschkenc Report HEIC image preview can be used to invoke Imagick Full Report...
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by leixiao leixiao Report CVE-2022-40127: RCE in Apache Airflow
Programme HackerOne Consensys Consensys Submitted by doosec101 doosec101 Report CSV Injection at https://assets-paris-demo.codefi.network/ Full Report A considerable amount of time...
Programme HackerOne Tor Tor Submitted by soulhunter soulhunter Report Address Bar Spoofing on TOR Browser Full Report A considerable amount...
Programme HackerOne Ruby on Rails Ruby on Rails Submitted by ooooooo_q ooooooo_q Report ReDoS (Rails::Html::PermitScrubber.scrub_attribute) Full Report A considerable amount...
