Programme HackerOne Automattic Automattic Submitted by aaroncarson aaroncarson Report Akismet API keys are exposed by authentication method Full Report A...
Programme HackerOne MTN Group MTN Group Submitted by jimmisimon jimmisimon Report Firebase credentials leak Full Report A considerable amount of...
Programme HackerOne Nintendo Nintendo Submitted by rambo6glaz rambo6glaz Report Improper verification of Competition creation allows to create "Official" competitions Full...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by theinternetofdefcon_ theinternetofdefcon_ Report Electron CVE-2022-35954 Delimiter Injection Vulnerability in exportVariable...
Programme HackerOne GitHub GitHub Submitted by legit-security legit-security Report DoS via markdown API from unauthenticated user Full Report A considerable...
Programme HackerOne Twitter Twitter Submitted by jub0bs jub0bs Report Link-shortener bypass (regression on fix for #1032610) Full Report A considerable...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by mattipv4 mattipv4 Report cd=false (DNSSEC) not respected in...
Programme HackerOne LinkedIn LinkedIn Submitted by headhunter headhunter Report Unauthorized access to resumes stored on LinkedIn Full Report A considerable...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne 8x8 8x8 Submitted by shuvam321 shuvam321 Report Unprotected Atlantis Server at https://152.70.. Full Report A considerable amount of...
Programme HackerOne Linktree Linktree Submitted by jagata jagata Report XSS in linktr.ee - on link thumbnail adding Full Report A...
Programme HackerOne EXNESS EXNESS Submitted by ashwarya ashwarya Report IDOR in Stats API Endpoint Allows Viewing Equity or Net Profit...
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Programme HackerOne MTN Group MTN Group Submitted by roland_hack roland_hack Report Authentication bypass in https://nin.mtn.ng Full Report A considerable amount...
Programme HackerOne Nextcloud Nextcloud Submitted by errorx404 errorx404 Report Calendar name length not validated before writing to database Full Report...
Programme HackerOne MTN Group MTN Group Submitted by shuvam321 shuvam321 Report Firebase Database Takeover in https://pulseradio.mtn.co.ug/ Full Report A considerable...
Programme HackerOne Ian Dunn Ian Dunn Submitted by ryotak ryotak Report Double evaluation in .bash_prompt of dotfiles allows a malicious...
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by bugra bugra Report CVE-2022-45402: Apache Airflow: Open redirect during login...
Programme HackerOne MTN Group MTN Group Submitted by wallotry wallotry Report Remove Every User, Admin, And Owner Out Of Their...
Programme HackerOne MTN Group MTN Group Submitted by coyemerald coyemerald Report Unprotected Direct Object Reference Full Report A considerable amount...
Programme HackerOne Yelp Yelp Submitted by shubhangirathore836 shubhangirathore836 Report If the website does not impose additional defense against CSRF attacks,...
Programme HackerOne AMBER AI AMBER AI Submitted by orange_h orange_h Report I found some api keys in js files ,huge...
Programme HackerOne Shopify Shopify Submitted by kun_19 kun_19 Report Stored XSS in Dovetale by application of creator Full Report A...
