Company Name: b'Yelp' Company HackerOne URL: https://hackerone.com/yelp Submitted By:b'lil_endian'Link to Submitters Profile:https://hackerone.com/b'lil_endian' Report Title:b'yelp.com and biz.yelp.com ATO via XSS +...
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'as_patro'Link to Submitters Profile:https://hackerone.com/b'as_patro' Report Title:b'Support Tickets can be created on behalf...
Company Name: b'Internet Bug Bounty' Company HackerOne URL: https://hackerone.com/ibb Submitted By:b'happyhacking123'Link to Submitters Profile:https://hackerone.com/b'happyhacking123' Report Title:b'CVE-2023-40195: Apache Airflow Spark Provider...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'mega7'Link to Submitters Profile:https://hackerone.com/b'mega7' Report Title:b'Adobe ColdFusion - Access...
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'fanimalikhack'Link to Submitters Profile:https://hackerone.com/b'fanimalikhack' Report Title:b"Unauthorized Ticket can be created by an...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'shuvam321'Link to Submitters Profile:https://hackerone.com/b'shuvam321' Report Title:b'LDAP Anonymous Login enabled...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'kirs112'Link to Submitters Profile:https://hackerone.com/b'kirs112' Report Title:b'SqlInject at 'Report Link:https://hackerone.com/reports/2073717Date...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'hackdog0ne'Link to Submitters Profile:https://hackerone.com/b'hackdog0ne' Report Title:b'Blind Sql Injection in...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'hackdog0ne'Link to Submitters Profile:https://hackerone.com/b'hackdog0ne' Report Title:b'Blind Sql Injection in...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'0xmaruf'Link to Submitters Profile:https://hackerone.com/b'0xmaruf' Report Title:b'CVE-2023-24488 xss on https:///'Report...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'maskedpersian'Link to Submitters Profile:https://hackerone.com/b'maskedpersian' Report Title:b'stored cross site scripting...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'fklet'Link to Submitters Profile:https://hackerone.com/b'fklet' Report Title:b'XSS Reflected'Report Link:https://hackerone.com/reports/1892317Date Submitted:08...
Cisco has released security fixes to address multiple security flaws, including a critical bug, that could be exploited by a...
Threat actors associated with North Korea are continuing to target the cybersecurity community using a zero-day bug in unspecified software...
Microsoft Internet Information Services (IIS) is a web server software package designed for Windows Server. Organizations commonly use Microsoft IIS...
Apple on Thursday released emergency security updates for iOS, iPadOS, macOS, and watchOS to address two zero-day flaws that have...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday warned that multiple nation-state actors are exploiting security flaws in...
NAME__________Simple Membership plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Simple Membership plugin for WordPress 3.2.8 WordPress Simple Membership Plugin for WordPress...
NAME__________Cacti cross-site scriptingPlatforms Affected:Cacti Cacti 1.2.24Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cacti is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Apple watchOS information disclosurePlatforms Affected:Apple watchOS 9.4Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple watchOS could allow a remote attacker to obtain sensitive information,...
NAME__________Samsung Android information disclosurePlatforms Affected:Samsung AndroidRisk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Samsung Android could allow a local attacker to obtain sensitive information, caused...
NAME__________Cacti command executionPlatforms Affected:Cacti Cacti 1.2.24Risk Level:7.2Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Cacti could allow a remote authenticated attacker to execute arbitrary commands on...
NAME__________Cacti cross-site scriptingPlatforms Affected:Cacti Cacti 1.2.24Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cacti is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Jenkins Job Configuration History Plugin directory traversalPlatforms Affected:Jenkins Job Configuration History Plugin 1227.v7a_79fc4dc01fRisk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Job Configuration History Plugin...
