Programme HackerOne Acronis Acronis Submitted by ub3rsick ub3rsick Report Stored Cross Site Scripting at http://www.grouplogic.com/ADMIN/store/index.cfm?fa=disprocode Full Report

HackerOne Bug Bounty Disclosure: path-traversal,-to-rcebysaltyyolk

June 7, 2022

Programme HackerOne GitLab GitLab Submitted by saltyyolk saltyyolk Report Path traversal, to RCE Full Report

HackerOne Bug Bounty Disclosure: path-traversal-in-nuget-package-registrybysaltyyolk

June 7, 2022

Programme HackerOne GitLab GitLab Submitted by saltyyolk saltyyolk Report Path traversal in Nuget Package Registry Full Report

HackerOne Bug Bounty Disclosure: store-admin-page-accessible-without-authentication-at-http://www-grouplogic-com/admin/store/index-cfmbyub3rsick

June 7, 2022

Programme HackerOne Acronis Acronis Submitted by ub3rsick ub3rsick Report Store Admin Page Accessible Without Authentication at http://www.grouplogic.com/ADMIN/store/index.cfm Full Report

Bug Bounty

HackerOne Bug Bounty Disclosure: hyper-link-injection-while-signupby011alsanosi

HackerOne Bug Bounty Disclosure: rails::html::safelistsanitizer-vulnerable-to-xss-attack-in-an-environment-that-allows-the-style-tagbywindshock

HackerOne Bug Bounty Disclosure: html-injection-in-e-mailbymega7

HackerOne Bug Bounty Disclosure: reflected-cross-site-scripting-at-http://www-grouplogic-com/files/glidownload/verify3-asp-[uppercase-filter-bypass]byub3rsick

HackerOne Bug Bounty Disclosure: reflected-cross-site-scripting-at–coldfusion-debugging-panel–http://www-grouplogic-com/cfide/debug/cf_debugfr-cfmbyub3rsick

HackerOne Bug Bounty Disclosure: lack-of-rate-limit-on-athentification-login-page-&-forgot-password-pagebysaidkira

HackerOne Bug Bounty Disclosure: disclosure-the-live_analytics-information-of-any-livestream-bydatph4m

HackerOne Bug Bounty Disclosure: email-address-disclosure-via-invite-token-validatiionbynoob_but_cut3

HackerOne Bug Bounty Disclosure: rxss-onbytmz900

HackerOne Bug Bounty Disclosure: moderator-can-enable-cam/mic-remotely-if–cam/mic-permission-was-disabled-while-user-has-activated-cam/micbymichag86

HackerOne Bug Bounty Disclosure: integer-overflows-in-unescape_word()byddme

HackerOne Bug Bounty Disclosure: matchbymaslahhunter

HackerOne Bug Bounty Disclosure: gitlab-pages-token-theft-using-service-workersbyehhthing

HackerOne Bug Bounty Disclosure: stored-xss-on-issue-comments-and-other-pages-which-contain-notesbyjarij

HackerOne Bug Bounty Disclosure: xss-by-clicking-jira’s-linkbyooooooo_q

HackerOne Bug Bounty Disclosure: open-redirect-on-https://www-glassdoor-com/profile/siwa-htm-via-state-parameterby0x7

HackerOne Bug Bounty Disclosure: “external-status-checks”-can-be-accepted-by-users-below-developer-access-if-the-user-is-either-author-or-assignee-of-the-target-merge-requestbyjoaxcar

HackerOne Bug Bounty Disclosure: reflected-xss-on-https://help-glassdoor-com/gd_requestsubmitpageby0x7

HackerOne Bug Bounty Disclosure: reflected-xss-on-https://www-glassdoor-com/parts/header-htmby0x7

HackerOne Bug Bounty Disclosure: private-objects-exposed-through-project-importbysaltyyolk

HackerOne Bug Bounty Disclosure: stored-cross-site-scripting-at-http://www-grouplogic-com/admin/store/index-cfm?fa=disprocodebyub3rsick

HackerOne Bug Bounty Disclosure: path-traversal,-to-rcebysaltyyolk

HackerOne Bug Bounty Disclosure: path-traversal-in-nuget-package-registrybysaltyyolk

HackerOne Bug Bounty Disclosure: store-admin-page-accessible-without-authentication-at-http://www-grouplogic-com/admin/store/index-cfmbyub3rsick

CVE Alert: CVE-2025-50100

CVE Alert: CVE-2025-50108

CVE Alert: CVE-2025-50101

CVE Alert: CVE-2025-50099

CVE Alert: CVE-2025-50098

You may have missed