bug bounty

HackerOne Bug Bounty Disclosure: elevation-of-privileges-eop-vulnerabilities-related-to-the-some-easy-options-on-windows-justlikebono-official

Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:justlikebono_officialLink to Submitters Profile:https://hackerone.com/justlikebono_official Report Title:Elevation of Privileges (EoP) vulnerabilities related to...

HackerOne Bug Bounty Disclosure: curl-doesn-t-hide-credentials-in-proc-xxx-cmdline-provided-via-cli-arguments-stogusho

Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:stogushoLink to Submitters Profile:https://hackerone.com/stogusho Report Title:curl doesn't hide credentials in /proc/XXX/cmdline provided...

HackerOne Bug Bounty Disclosure: curl-easy-header-runs-at-o-n-or-worse-and-can-be-abused-to-use-minute-s-of-cpu-time-wolfsage

Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:wolfsageLink to Submitters Profile:https://hackerone.com/wolfsage Report Title:curl_easy_header runs at O(N) or worse and...

HackerOne Bug Bounty Disclosure: curl-oj-allows-creating-custom-curlrc-file-which-allows-exfiltrating-private-data-among-other-things-wolfsage

Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:wolfsageLink to Submitters Profile:https://hackerone.com/wolfsage Report Title:curl -OJ allows creating custom curlrc file...

HackerOne Bug Bounty Disclosure: heap-buffer-overflow-vulnerability-in-conncache-c-incorrect-use-of-pointer-arrays-resulting-in-out-of-bounds-memory-writes-freak-coding

Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:freak_codingLink to Submitters Profile:https://hackerone.com/freak_coding Report Title:Heap buffer overflow vulnerability in conncachec: incorrect...

BugCrowd Bug Bounty Disclosure: P3 – RXSS at `https://skyview.gsfc.nasa.gov/current/cgi/vo/sia.pl` – GxbNt

RXSS at `https://skyview.gsfc.nasa.gov/current/cgi/vo/sia.pl` RXSS at `https://skyview.gsfc.nasa.gov/current/cgi/vo/sia.pl` Researcher: GxbNt Engagement: National Aeronautics and Space Administration (NASA) - Vulnerability Disclosure Program Disclosed...

HackerOne Bug Bounty Disclosure: idor-vulnerability-at-addtagtoassets-operation-name-root-geek

Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:root_geek280Link to Submitters Profile:https://hackerone.com/root_geek280 Report Title:IDOR Vulnerability at AddTagToAssets operation nameReport Link:https://hackerone.com/reports/2633771Date...

HackerOne Bug Bounty Disclosure: returnurl-allow-attacker-to-redirect-users-to-the-another-phising-website-and-takeover-credientials-basant-x

Company Name: Insightly Company HackerOne URL: https://hackerone.com/insightly Submitted By:basant0x01Link to Submitters Profile:https://hackerone.com/basant0x01 Report Title:returnUrl= allow attacker to redirect users to...