Channel address:
Categories:
Technologies
Language: English
Subscribers:
1.23K
Description from channel
Latest updates about disclosure bug bounty reports: tech details, impacts, bounties 📣
Rate👇
https://cutt.ly/bugpoint_rate
Feedback👇
https://cutt.ly/bugpoint_feedback
#️⃣ bug bounty disclosed reports
#️⃣ bug bounty write-ups
#️⃣ bug bounty teleg
Ratings & Reviews
Reviews can be left only by registered users. All reviews are moderated by admins.
5 stars
1
4 stars
0
3 stars
0
2 stars
0
1 stars
1
The latest Messages 3
2022-08-25 21:55:02
Reflected XSS on pages.email.sel.sony.com/page.aspx via jobid parameter https://hackerone.com/reports/1309949
Severity: Medium
Reported To: Sony
Reported By: #leo_rac
State: Resolved
Disclosed: August 24, 2022, 5:59pm (UTC)
150 views18:55
2022-08-25 20:23:02
Golang expvar Information Disclosure https://hackerone.com/reports/1650035
Severity: Low |
500 USD Reported To: Uber
Reported By: #mustafa_farrag
State: Resolved
Disclosed: August 24, 2022, 3:44pm (UTC)
156 views17:23
2022-08-25 19:45:01
Off-by-slash vulnerability in nodejs.org and iojs.org https://hackerone.com/reports/1631350
Severity: Medium
Reported To: Node.js
Reported By: #nagaro
State: Resolved
Disclosed: August 24, 2022, 2:11pm (UTC)
164 views16:45
2022-08-25 19:14:03
support.invisionpower.com takeover the subdomain with Zendesk https://hackerone.com/reports/1646554
Severity: Medium
Reported To: Invision Power Services, Inc.
Reported By: #fthacker101
State: Resolved
Disclosed: August 24, 2022, 1:10pm (UTC)
163 views16:14
2022-08-23 22:17:01
XSS and HTML Injection on the pressable.com search box https://hackerone.com/reports/1537149
Severity: Medium |
250 USD Reported To: Automattic
Reported By: #sawrav-chowdhury
State: Resolved
Disclosed: August 23, 2022, 6:30pm (UTC)
221 views19:17
2022-08-21 11:44:02
Blind SSRF External Interaction on https://mtngbissau.com/ https://hackerone.com/reports/1220688
Severity: High
Reported To: MTN Group
Reported By: #error201
State: Resolved
Disclosed: August 21, 2022, 8:40am (UTC)
305 views08:44
2022-08-20 08:03:03
RPC call crashes node https://hackerone.com/reports/1379707
Severity: High
Reported To: Monero
Reported By: #xfang
State: Resolved
Disclosed: August 20, 2022, 3:41am (UTC)
330 views05:03
2022-08-19 17:03:02
Stored XSS on TikTok Ads https://hackerone.com/reports/1504202
Severity: Medium |
2,500 USD Reported To: TikTok
Reported By: #sinayeganeh
State: Resolved
Disclosed: August 19, 2022, 1:14am (UTC)
313 views14:03
2022-08-19 01:35:02
Ingress-nginx annotation injection allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces https://hackerone.com/reports/1378175
Severity: High |
2,500 USD Reported To: Kubernetes
Reported By: #amlweems
State: Resolved
Disclosed: August 13, 2022, 6:13pm (UTC)
291 views22:35
2022-08-19 01:00:03
IDOR allowing to read another user's token on the Social Media Ads service https://hackerone.com/reports/1464168
Severity: High |
2,000 USD Reported To: Semrush
Reported By: #a_d_a_m
State: Resolved
Disclosed: August 16, 2022, 7:47am (UTC)
251 views22:00
B
