Channel address:
Categories:
Technologies
Language: English
Subscribers:
1.23K
Description from channel
Latest updates about disclosure bug bounty reports: tech details, impacts, bounties 📣
Rate👇
https://cutt.ly/bugpoint_rate
Feedback👇
https://cutt.ly/bugpoint_feedback
#️⃣ bug bounty disclosed reports
#️⃣ bug bounty write-ups
#️⃣ bug bounty teleg
Ratings & Reviews
Reviews can be left only by registered users. All reviews are moderated by admins.
5 stars
1
4 stars
0
3 stars
0
2 stars
0
1 stars
1
The latest Messages 72
2021-05-20 19:22:02
Several domains on kaspersky.com are vulnerable to Web Cache Deception attack https://hackerone.com/reports/1185028
Severity: Medium
Reported To: Kaspersky
Reported By: #golim
State: Resolved
Disclosed: May 20, 2021, 4:20pm (UTC)
158 views16:22
2021-05-20 17:48:02
Weak password policy leading to exposure of administrator account access https://hackerone.com/reports/1168104
Severity: Critical
Reported To: U.S. General Services Administration
Reported By: #rajeshpatil
State: Resolved
Disclosed: May 20, 2021, 2:45pm (UTC)
128 views14:48
2021-05-20 16:56:02
Account takeover just through csrf in https://booking.qiwi.kz/profile https://hackerone.com/reports/1066189
Severity: Medium |
100 USD Reported To: QIWI
Reported By: #sniper302
State: Resolved
Disclosed: May 20, 2021, 1:53pm (UTC)
130 views13:56
2021-05-19 00:44:02
Improper Access Control on Lark Footer Feature https://hackerone.com/reports/1169340
Severity: High |
1,000 USD Reported To: Lark Technologies
Reported By: #imran_nisar
State: Resolved
Disclosed: May 18, 2021, 9:42pm (UTC)
52 views21:44
2021-05-18 23:38:02
Pre-Auth Blind NoSQL Injection leading to Remote Code Execution https://hackerone.com/reports/1130721
Severity: Critical
Reported To: Rocket.Chat
Reported By: #sonarsource
State: Resolved
Disclosed: May 18, 2021, 8:36pm (UTC)
77 views20:38
2021-05-18 21:52:03
No Valid SPF Records/don't have DMARC record https://hackerone.com/reports/1198439
Severity: Critical
Reported To: UPchieve
Reported By: #shoaib_18
State: Resolved
Disclosed: May 18, 2021, 6:49pm (UTC)
97 views18:52
2021-05-18 19:22:02
Bypass t.co link shortener in Twitter direct messages https://hackerone.com/reports/1148548
Severity: Low |
560 USD Reported To: Twitter
Reported By: #iambouali
State: Resolved
Disclosed: May 18, 2021, 4:19pm (UTC)
123 views16:22
2021-05-18 19:06:02
Previously created sessions continue being valid after MFA activation https://hackerone.com/reports/1185479
Severity: Medium
Reported To: CS Money
Reported By: #gatolouco
State: Informative
Disclosed: May 18, 2021, 4:04pm (UTC)
125 views16:06
2021-05-18 16:54:02
Authenticated XXE https://hackerone.com/reports/1095645
Severity: Medium |
600 USD Reported To: WordPress
Reported By: #sonarsource
State: Resolved
Disclosed: May 18, 2021, 1:52pm (UTC)
135 views13:54
2021-05-18 06:10:03
Japan - CSRF in webapp.starbucks.co.jp with user interaction could leak an access token if the user was not using Chrome https://hackerone.com/reports/1113559
Severity: High |
1,050 USD Reported To: Starbucks
Reported By: #elber
State: Resolved
Disclosed: May 18, 2021, 3:08am (UTC)
88 views03:10