Company Name: Tennessee Valley Authority Company HackerOne URL: https://hackerone.com/tennessee-valley-authority Submitted By:dreamer_ehLink to Submitters Profile:https://hackerone.com/dreamer_eh Report Title:Rate limit missing sign-in pageReport...
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:the_arch_angelLink to Submitters Profile:https://hackerone.com/the_arch_angel Report Title:Asset Inventory Internal Descriptions are leaked in...
Company Name: TikTok Company HackerOne URL: https://hackerone.com/tiktok Submitted By:zerodyLink to Submitters Profile:https://hackerone.com/zerody Report Title:CSRF protection bypass on TikTok Webcast EndpointsReport...
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:sw0rd1ightLink to Submitters Profile:https://hackerone.com/sw0rd1ight Report Title:CVE-2023-28710 Apache Airflow Spark Provider...
Company Name: Nextcloud Company HackerOne URL: https://hackerone.com/nextcloud Submitted By:polapain1337Link to Submitters Profile:https://hackerone.com/polapain1337 Report Title:Brute force protection allows to send more...
NAME__________UNISOC mobile phone chipsets for Android denial of servicePlatforms Affected:Unisoc SC9863A Unisoc SC9832E Unisoc SC7731E Unisoc T610 Unisoc T606 Unisoc...
NAME__________Quiz Expert plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Quiz Expert Plugin for WordPress 1.5.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Quiz Expert plugin...
NAME__________JetBrains YouTrack security bypassPlatforms Affected:JetBrains YouTrack 2023.1Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________JetBrains YouTrack could allow a remote attacker to bypass security restrictions,...
NAME__________AVG Anti-Spyware code executionPlatforms Affected:AVG AVG Anti-Spyware 7.5Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AVG Anti-Spyware could allow a local authenticated attacker to execute...
NAME__________Template Debugger plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Template Debugger Plugin for WordPress 3.1.2Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Template Debugger plugin...
NAME__________Galleria plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Galleria Plugin for WordPress 1.0.3Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Galleria plugin for WordPress is...
NAME__________WP RSS Images Slider Plugin for Videos plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP RSS Images Plugin for WordPress...
NAME__________UNISOC mobile phone chipsets for Android information disclosurePlatforms Affected:Unisoc SC9863A Unisoc SC9832E Unisoc SC7731E Unisoc T610 Unisoc T606 Unisoc T760...
NAME__________SAP S/4HANA security bypassPlatforms Affected:SAP S/4HANA 104 SAP S/4HANA 105 SAP S/4HANA 106 SAP S/4HANA 107Risk Level:6.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________SAP S/4HANA...
NAME__________Juniper Networks Junos OS denial of servicePlatforms Affected:Juniper Networks Junos OS 19.2 Juniper Networks Junos OS 19.3 Juniper Networks Junos...
NAME__________JetBrains TeamCity information disclosurePlatforms Affected:JetBrains TeamCity 2023.05Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________JetBrains TeamCity could allow a remote authenticated attacker to obtain sensitive...
NAME__________SonicWall GMS and Analytics directory traversalPlatforms Affected:SonicWall GMS 9.3.2 SP1 SonicWall Analytics 2.5.0.4 R7Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SonicWall GMS and Analytics...
NAME__________SonicWall GMS and Analytics weak securityPlatforms Affected:SonicWall GMS 9.3.2 SP1 SonicWall Analytics 2.5.0.4 R7Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SonicWall GMS and Analytics...
NAME__________SonicWall GMS and Analytics weak securityPlatforms Affected:SonicWall GMS 9.3.2 SP1 SonicWall Analytics 2.5.0.4 R7Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SonicWall GMS and Analytics...
NAME__________JetBrains TeamCity cross-site scriptingPlatforms Affected:JetBrains TeamCity 2023.05Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________JetBrains TeamCity is vulnerable to cross-site scripting, caused by improper validation...
NAME__________SonicWall GMS and Analytics file uploadPlatforms Affected:SonicWall GMS 9.3.2 SP1 SonicWall Analytics 2.5.0.4 R7Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SonicWall GMS and Analytics...
NAME__________Juniper Networks Junos OS denial of servicePlatforms Affected:Juniper Networks Junos OS 20.3 Juniper Networks Junos OS 20.4 Juniper Networks Junos...
NAME__________SonicWall GMS and Analytics directory traversalPlatforms Affected:SonicWall GMS 9.3.2 SP1 SonicWall Analytics 2.5.0.4 R7Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SonicWall GMS and Analytics...
NAME__________libtiff denial of servicePlatforms Affected:LibTIFF LibTIFF 4.5.0Risk Level:5.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________libtiff is vulnerable to a denial of service,...
