bug bounty

hackerone

HackerOne Bug Bounty Disclosure: b-smuggling-content-in-pr-with-refs-replace-in-github-b-inspector-ambitious

August 1, 2023

Company Name: b'GitHub' Company HackerOne URL: https://hackerone.com/github Submitted By:b'inspector-ambitious'Link to Submitters Profile:https://hackerone.com/b'inspector-ambitious' Report Title:b'Smuggling content in PR with refs/replace in...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-smuggling-content-in-pr-with-refs-replace-in-github-b-inspector-ambitious
hackerone

HackerOne Bug Bounty Disclosure: b-apache-mod-negotiation-filename-bruteforcing-https-api-ratelimited-me-b-codeslayer

August 1, 2023

Company Name: b'RATELIMITED' Company HackerOne URL: https://hackerone.com/ratelimited Submitted By:b'codeslayer137'Link to Submitters Profile:https://hackerone.com/b'codeslayer137' Report Title:b'Apache mod_negotiation filename bruteforcing https://api.ratelimited.me'Report Link:https://hackerone.com/reports/475167Date Submitted:01...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-apache-mod-negotiation-filename-bruteforcing-https-api-ratelimited-me-b-codeslayer
hackerone

HackerOne Bug Bounty Disclosure: b-bypass-two-factor-authentication-b-spaceboy

August 1, 2023

Company Name: b'LinkedIn' Company HackerOne URL: https://hackerone.com/linkedin Submitted By:b'spaceboy20'Link to Submitters Profile:https://hackerone.com/b'spaceboy20' Report Title:b'bypass two-factor authentication.'Report Link:https://hackerone.com/reports/1842183Date Submitted:01 August 2023...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-bypass-two-factor-authentication-b-spaceboy
hackerone

HackerOne Bug Bounty Disclosure: b-disavowed-an-email-without-any-authentication-b-sameersec

July 31, 2023

Company Name: b'Liberapay' Company HackerOne URL: https://hackerone.com/liberapay Submitted By:b'sameersec'Link to Submitters Profile:https://hackerone.com/b'sameersec' Report Title:b'Disavowed an email without any authentication'Report Link:https://hackerone.com/reports/2088808Date...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-disavowed-an-email-without-any-authentication-b-sameersec
hackerone

HackerOne Bug Bounty Disclosure: b-takeover-of-hackerone-engineering-via-github-b-m-chan

July 31, 2023

Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'm0chan'Link to Submitters Profile:https://hackerone.com/b'm0chan' Report Title:b'Takeover of hackerone.engineering via Github'Report Link:https://hackerone.com/reports/2085260Date Submitted:31...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-takeover-of-hackerone-engineering-via-github-b-m-chan
hackerone

HackerOne Bug Bounty Disclosure: b-crash-report-cloudflare-warp-doesn-t-verify-text-length-in-excluded-host-name-input-data-b-shewhoisblack

July 31, 2023

Company Name: b'Cloudflare Public Bug Bounty' Company HackerOne URL: https://hackerone.com/cloudflare Submitted By:b'shewhoisblack'Link to Submitters Profile:https://hackerone.com/b'shewhoisblack' Report Title:b'Crash report -Cloudflare WARP...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-crash-report-cloudflare-warp-doesn-t-verify-text-length-in-excluded-host-name-input-data-b-shewhoisblack
hackerone

HackerOne Bug Bounty Disclosure: b-csrf-in-seller-us-tiktok-com-profile-account-setting-delegation-login-b-eye

July 26, 2023

Company Name: b'TikTok' Company HackerOne URL: https://hackerone.com/tiktok Submitted By:b'eye_'Link to Submitters Profile:https://hackerone.com/b'eye_' Report Title:b'CSRF in seller-us.tiktok.com/profile/account-setting/delegation-login 'Report Link:https://hackerone.com/reports/2002352Date Submitted:26 July...

Read MoreRead more about HackerOne Bug Bounty Disclosure: b-csrf-in-seller-us-tiktok-com-profile-account-setting-delegation-login-b-eye
hackerone

HackerOne Bug Bounty Disclosure: heap-buffer-overflow-in-gc-writebarrier-incremental-piao

July 19, 2023

Company Name: Ruby Company HackerOne URL: https://hackerone.com/ruby Submitted By:piaoLink to Submitters Profile:https://hackerone.com/piao Report Title:heap-buffer-overflow in gc_writebarrier_incrementalReport Link:https://hackerone.com/reports/1940002Date Submitted:19 July 2023...

Read MoreRead more about HackerOne Bug Bounty Disclosure: heap-buffer-overflow-in-gc-writebarrier-incremental-piao
hackerone

HackerOne Bug Bounty Disclosure: rdoc-methodattr-is-vulnerable-to-regular-expression-denial-of-service-redos-sighook

July 18, 2023

Company Name: Ruby Company HackerOne URL: https://hackerone.com/ruby Submitted By:sighookLink to Submitters Profile:https://hackerone.com/sighook Report Title:RDoc::MethodAttr is vulnerable to Regular Expression Denial...

Read MoreRead more about HackerOne Bug Bounty Disclosure: rdoc-methodattr-is-vulnerable-to-regular-expression-denial-of-service-redos-sighook
hackerone

HackerOne Bug Bounty Disclosure: an-idor-that-can-lead-to-enumeration-of-a-user-and-disclosure-of-email-and-phone-number-within-cashier-miquinho

July 17, 2023

Company Name: Unikrn Company HackerOne URL: https://hackerone.com/unikrn Submitted By:miquinhoLink to Submitters Profile:https://hackerone.com/miquinho Report Title:An IDOR that can lead to enumeration...

Read MoreRead more about HackerOne Bug Bounty Disclosure: an-idor-that-can-lead-to-enumeration-of-a-user-and-disclosure-of-email-and-phone-number-within-cashier-miquinho
hackerone

HackerOne Bug Bounty Disclosure: an-attacker-can-can-view-any-hacker-email-via-savecollaboratorsmutation-operation-name–xrayan

July 14, 2023

Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:0xrayan1996Link to Submitters Profile:https://hackerone.com/0xrayan1996 Report Title:An attacker can can view any hacker...

Read MoreRead more about HackerOne Bug Bounty Disclosure: an-attacker-can-can-view-any-hacker-email-via-savecollaboratorsmutation-operation-name–xrayan
hackerone

HackerOne Bug Bounty Disclosure: metamask-browser-url-and-transaction-origin-spoofing-metamask-wallet-android-metamask-wallet-ios-renekroka

July 14, 2023

Company Name: MetaMask Company HackerOne URL: https://hackerone.com/metamask Submitted By:renekrokaLink to Submitters Profile:https://hackerone.com/renekroka Report Title:MetaMask Browser URL and Transaction Origin Spoofing...

Read MoreRead more about HackerOne Bug Bounty Disclosure: metamask-browser-url-and-transaction-origin-spoofing-metamask-wallet-android-metamask-wallet-ios-renekroka
hackerone

HackerOne Bug Bounty Disclosure: improper-authentication-inside-the-rockstar-games-launcher-which-leads-to-account-takeover-to-some-extend–xshivam

July 14, 2023

Company Name: Rockstar Games Company HackerOne URL: https://hackerone.com/rockstargames Submitted By:0xshivamLink to Submitters Profile:https://hackerone.com/0xshivam Report Title:Improper Authentication inside the Rockstar Games...

Read MoreRead more about HackerOne Bug Bounty Disclosure: improper-authentication-inside-the-rockstar-games-launcher-which-leads-to-account-takeover-to-some-extend–xshivam

You may have missed

image

CVE Alert: CVE-2025-50070

July 17, 2025
image

CVE Alert: CVE-2025-50071

July 17, 2025
image

CVE Alert: CVE-2025-50082

July 17, 2025
image

CVE Alert: CVE-2025-50069

July 17, 2025
image

CVE Alert: CVE-2025-50081

July 17, 2025