HackerOne Bug Bounty Disclosure: no-restriction-on-passwordbypatronum-m
Programme HackerOne GitLab GitLab Submitted by patronum-m patronum-m Report No Restriction on password Full Report A considerable amount of time...
bug bounty
HackerOne Bug Bounty Disclosure: dos-validator-nodes-of-blockchain-to-block-external-connectionsbycre8
Programme HackerOne Hyperledger Hyperledger Submitted by cre8 cre8 Report DOS validator nodes of blockchain to block external connections Full Report...
HackerOne Bug Bounty Disclosure: signup-with-any-email-and-enable-2-fa-without-verifying-emailbyimtheking
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by imtheking imtheking Report Signup with any Email and...
HackerOne Bug Bounty Disclosure: access-to-arbitrary-file-of-the-nextcloud-android-app-from-within-the-nextcloud-android-appbyluchua
Programme HackerOne Nextcloud Nextcloud Submitted by luchua luchua Report Access to arbitrary file of the Nextcloud Android app from within...
HackerOne Bug Bounty Disclosure: cleartext-storage-of-sensitive-information-at-https://staging-status-ai-apps-comms-ibm-com/env-can-lead-to-account-takeover–of-several-ibm-employeesbyzere
Programme HackerOne IBM IBM Submitted by zere zere Report Cleartext storage of sensitive information at https://staging.status.ai-apps-comms.ibm.com/env can lead to account...
BugCrowd Bug Bounty Disclosure: – Open Redirect On login Page – By RizwanSiDdiqu1
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Reflected XSS – By Faique
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Vulnerable to Log4j – By Ractiurd
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – XSS REFLECTED – By kauenavarro
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Session fixation – By cyber_ritik
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Reflected XSS via HTML Injection – 2 – By Poc-as
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Reflected XSS – By mewtw0
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Reflected XSS via HTML Injection – By Poc-as
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Failed to validate Session after Password Change. – By cyber_ritik
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Information Disclosure of sensitive data CVE-2017-5487 – By technoking
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
HackerOne Bug Bounty Disclosure: string-length-restriction-byepass-at-https://callerfeel-mtnonline-com/profile/feedback-htmlbyaliyugombe
Programme HackerOne MTN Group MTN Group Submitted by aliyugombe aliyugombe Report String length restriction byepass at https://callerfeel.mtnonline.com/profile/feedback.html Full Report A...
HackerOne Bug Bounty Disclosure: idor-payments-statusbycodeslayer137
Programme HackerOne Omise Omise Submitted by codeslayer137 codeslayer137 Report IDOR Payments Status Full Report A considerable amount of time and...
HackerOne Bug Bounty Disclosure: api-key-(api-semrush-com)-leak-in-js-filebya_d_a_m
Programme HackerOne Semrush Semrush Submitted by a_d_a_m a_d_a_m Report API key (api.semrush.com) leak in JS-file Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: idor-leads-to-account-takeover-without-user-interactionbytheranger
Programme HackerOne MTN Group MTN Group Submitted by theranger theranger Report IDOR Leads To Account Takeover Without User Interaction Full...
HackerOne Bug Bounty Disclosure: password-disclosure-in-initial-setup-of-mail-appbyanna_larch
Programme HackerOne Nextcloud Nextcloud Submitted by anna_larch anna_larch Report Password disclosure in initial setup of Mail App Full Report A...
HackerOne Bug Bounty Disclosure: unauthenticated-ssrf-in-3rd-party-module-“cerdic/csstidy”byeg42
Programme HackerOne Nextcloud Nextcloud Submitted by eg42 eg42 Report Unauthenticated SSRF in 3rd party module "cerdic/csstidy" Full Report A considerable...
HackerOne Bug Bounty Disclosure: federated-share-accepting/declining-is-not-logged-in-audit-logbyrtod
Programme HackerOne Nextcloud Nextcloud Submitted by rtod rtod Report Federated share accepting/declining is not logged in audit log Full Report...
HackerOne Bug Bounty Disclosure: brute-force-protections-don’t-workbynickvergessen
Programme HackerOne Nextcloud Nextcloud Submitted by nickvergessen nickvergessen Report Brute force protections don't work Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: path-traversal-vulnerability-in-grafana-8-x-allows-“-local-file-read-“bya-heybati
Programme HackerOne MTN Group MTN Group Submitted by a-heybati a-heybati Report path traversal vulnerability in Grafana 8.x allows " local...
