| | For some reason, the PS4/PS5 is vulnerable to [CVE-2006-4304] (hackerone.com) |
|
2 points by benjacksondev 11 days ago | past | discuss
|
|
| | Coinbase awarded a $500k bug bounty (hackerone.com) |
|
210 points by alexcos 3 months ago | past | 159 comments
|
|
| | Header Parsing Leads to Possible Denial of Service Vulnerability (hackerone.com) |
|
1 point by tomtom1989 5 months ago | past
|
|
| | GitHub Access Token Exposure (hackerone.com) |
|
1 point by Pyrobyte 6 months ago | past | 3 comments
|
|
| | Broken Authentication and Session Management (hackerone.com) |
|
1 point by Buggybaby 8 months ago | past
|
|
| | Sensitive Information Exposed at Test (hackerone.com) |
|
1 point by drosofray 9 months ago | past
|
|
| | HackerOne Partners with Semgrep (hackerone.com) |
|
3 points by ajbt200128 10 months ago | past
|
|
| | The Start of AI-Generated BugBounty Reports (hackerone.com) |
|
4 points by paul-tharun 10 months ago | past
|
|
| | Critical SSRF Vulnerability Disclosed in HackerOne (hackerone.com) |
|
1 point by rtvkiz 11 months ago | past
|
|
| | HackerOne Employee Accidentally Posted Their Session Cookie on HackerOne (2019) (hackerone.com) |
|
1 point by karagenit 11 months ago | past
|
|
| | Null Pointer Dereference in Idn.c (hackerone.com) |
|
2 points by beeburrt on Oct 1, 2023 | past | 1 comment
|
|
| | Login to any user account using other Facebook app access token (2015) (hackerone.com) |
|
18 points by Bikee on Sept 5, 2023 | past | 16 comments
|
|
| | HackerOne lays off 12% of its workforce (hackerone.com) |
|
67 points by Techbrunch on Aug 2, 2023 | past | 106 comments
|
|
| | Node.js HTTP Request Smuggling via Empty Headers Separated by CR (hackerone.com) |
|
20 points by osivertsson on July 4, 2023 | past | 2 comments
|
|
| | Login to any user account using other Facebook app access token (2015) (hackerone.com) |
|
2 points by nkosingimele on July 1, 2023 | past
|
|
| | Bypass Validation Parts in AWS IAM Authenticator for Kubernetes (hackerone.com) |
|
11 points by arkadiyt on May 25, 2023 | past
|
|
| | TikTok bug: bypass two-factor authentication in Android apps and web (hackerone.com) |
|
1 point by ledoge on Jan 9, 2023 | past
|
|
| | Leak of sensitive values to Airflow rendered template (hackerone.com) |
|
1 point by khan-gtxofied on Jan 8, 2023 | past
|
|
| | HTTP Request Smuggling via HTTP/2 (hackerone.com) |
|
2 points by chiragbro on Dec 30, 2022 | past
|
|
| | XSS while logging using Google (hackerone.com) |
|
1 point by goegle on Dec 10, 2022 | past
|
|
| | GitHub access token exposure (hackerone.com) |
|
19 points by malazgirt on Nov 20, 2022 | past | 3 comments
|
|
| | Blind SSRF on platform.dash.cloudflare.com Due to Sentry misconfiguration (hackerone.com) |
|
1 point by lohigowda on Sept 5, 2022 | past
|
|
| | Twitter paid $5000 bug bounty that resulted in 5.4mm leaked records (hackerone.com) |
|
18 points by hnburnsy on Aug 9, 2022 | past | 4 comments
|
|
| | Bypass SQL Injection #1109311 (hackerone.com) |
|
1 point by hackerkurdone on July 19, 2022 | past
|
|
| | Multiple vulnerability leading to account takeover in TikTok SMB subdomain (hackerone.com) |
|
2 points by hackerkurdone on July 19, 2022 | past
|
|
| | HackerOne June 2022 Incident Report (hackerone.com) |
|
30 points by uptown on July 1, 2022 | past | 6 comments
|
|
| | Playstation confirms chain of 5 vulnerabilities on PS4/PS5 (hackerone.com) |
|
288 points by guiambros on June 19, 2022 | past | 160 comments
|
|
| | Playstation bd-j exploit chain (hackerone.com) |
|
2 points by homarp on June 12, 2022 | past | 1 comment
|
|
| | Disclosure of Top Vulnerability (hackerone.com) |
|
1 point by akshobdhira on May 19, 2022 | past
|
|
| | PullRequest (YC S17) Acquired by HackerOne (hackerone.com) |
|
2 points by welder on April 28, 2022 | past
|
|
|
|
More |
