HackerOne Bug Bounty Disclosure: xss-in-linktr-ee—on-link-thumbnail-addingbyjagata
Programme HackerOne Linktree Linktree Submitted by jagata jagata Report XSS in linktr.ee - on link thumbnail adding Full Report A...
bug bounty
HackerOne Bug Bounty Disclosure: idor-in-stats-api-endpoint-allows-viewing-equity-or-net-profit-of-any-mt-accountbyashwarya
Programme HackerOne EXNESS EXNESS Submitted by ashwarya ashwarya Report IDOR in Stats API Endpoint Allows Viewing Equity or Net Profit...
BugCrowd Bug Bounty Disclosure: – HTML Injection > licensing.fcc.gov – By Naplon
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
HackerOne Bug Bounty Disclosure: authentication-bypass-in-https://nin-mtn-ngbyroland_hack
Programme HackerOne MTN Group MTN Group Submitted by roland_hack roland_hack Report Authentication bypass in https://nin.mtn.ng Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: calendar-name-length-not-validated-before-writing-to-databasebyerrorx404
Programme HackerOne Nextcloud Nextcloud Submitted by errorx404 errorx404 Report Calendar name length not validated before writing to database Full Report...
HackerOne Bug Bounty Disclosure: firebase-database-takeover-in-https://pulseradio-mtn-co-ug/byshuvam321
Programme HackerOne MTN Group MTN Group Submitted by shuvam321 shuvam321 Report Firebase Database Takeover in https://pulseradio.mtn.co.ug/ Full Report A considerable...
HackerOne Bug Bounty Disclosure: double-evaluation-in–bash_prompt-of-dotfiles-allows-a-malicious-repository-to-execute-arbitrary-commandsbyryotak
Programme HackerOne Ian Dunn Ian Dunn Submitted by ryotak ryotak Report Double evaluation in .bash_prompt of dotfiles allows a malicious...
HackerOne Bug Bounty Disclosure: cve-2022-45402:-apache-airflow:-open-redirect-during-loginbybugra
Programme HackerOne Internet Bug Bounty Internet Bug Bounty Submitted by bugra bugra Report CVE-2022-45402: Apache Airflow: Open redirect during login...
HackerOne Bug Bounty Disclosure: remove-every-user,-admin,-and-owner-out-of-their-teams-on-developers-mtn-com-via-idor-+-information-disclosurebywallotry
Programme HackerOne MTN Group MTN Group Submitted by wallotry wallotry Report Remove Every User, Admin, And Owner Out Of Their...
HackerOne Bug Bounty Disclosure: unprotected-direct-object-referencebycoyemerald
Programme HackerOne MTN Group MTN Group Submitted by coyemerald coyemerald Report Unprotected Direct Object Reference Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: if-the-website-does-not-impose-additional-defense-against-csrf-attacks,-failing-to-use-the-‘lax’-or-‘strict’-values-could-increase-the-risk-of-exposurbyshubhangirathore836
Programme HackerOne Yelp Yelp Submitted by shubhangirathore836 shubhangirathore836 Report If the website does not impose additional defense against CSRF attacks,...
HackerOne Bug Bounty Disclosure: i-found-some-api-keys-in-js-files-,huge-leak-of–token-addresses-and-huge-amount-of-js-files-are-not-forbiddenbyorange_h
Programme HackerOne AMBER AI AMBER AI Submitted by orange_h orange_h Report I found some api keys in js files ,huge...
HackerOne Bug Bounty Disclosure: stored-xss-in-dovetale-by-application-of-creatorbykun_19
Programme HackerOne Shopify Shopify Submitted by kun_19 kun_19 Report Stored XSS in Dovetale by application of creator Full Report A...
BugCrowd Bug Bounty Disclosure: – Vulnerable to Log4j – By Ractiurd
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Information Disclosure of sensitive data CVE-2017-5487 – By technoking
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Reflected XSS – By mewtw0
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – HTML Injection in meeting owner email – By mega7
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Open Redirect On login Page – By RizwanSiDdiqu1
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Session fixation – By cyber_ritik
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Failed to validate Session after Password Change. – By cyber_ritik
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Publisher owner doesn’t able to delete low privilege user – By AlWaYsHuNt
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – HTML Injection in email when deactivate a user – By mega7
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Impersonation via Broken Link Hijacking on https://sv.hellosign.com – By CoffeeAddict_exe
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
