InfoSec News & Tutorials
Programme HackerOne Nextcloud Nextcloud Submitted by errorx404 errorx404 Report Calendar name length not validated before writing to database Full Report A considerable amount of time and effort goes into maintaining…
Programme HackerOne MTN Group MTN Group Submitted by shuvam321 shuvam321 Report Firebase Database Takeover in https://pulseradio.mtn.co.ug/ Full Report A considerable amount of time and effort goes into maintaining this website,…
Programme HackerOne Ian Dunn Ian Dunn Submitted by ryotak ryotak Report Double evaluation in .bash_prompt of dotfiles allows a malicious repository to execute arbitrary commands Full Report A considerable amount…
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by bugra bugra Report CVE-2022-45402: Apache Airflow: Open redirect during login Full Report A considerable amount of time and effort goes…
Programme HackerOne MTN Group MTN Group Submitted by wallotry wallotry Report Remove Every User, Admin, And Owner Out Of Their Teams on developers.mtn.com via IDOR + Information Disclosure Full Report…
Programme HackerOne MTN Group MTN Group Submitted by coyemerald coyemerald Report Unprotected Direct Object Reference Full Report A considerable amount of time and effort goes into maintaining this website, creating…
Programme HackerOne Yelp Yelp Submitted by shubhangirathore836 shubhangirathore836 Report If the website does not impose additional defense against CSRF attacks, failing to use the 'Lax' or 'Strict' values could increase…
Programme HackerOne Shopify Shopify Submitted by kun_19 kun_19 Report Stored XSS in Dovetale by application of creator Full Report A considerable amount of time and effort goes into maintaining this…
Programme HackerOne AMBER AI AMBER AI Submitted by orange_h orange_h Report I found some api keys in js files ,huge leak of token addresses and huge amount of js files…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information rakuten vdp…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information rakuten vdp…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information rakuten vdp…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information gorillas vdp…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information asana Program…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information Program Details…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information dropbox Program…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information rakuten vdp…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information rakuten vdp…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information rakuten vdp…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information hubspot Program…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information dropbox Program…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information asana Program…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information asana Program…
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting. Program Program Information dropbox Program…