Telegram Web Link
bootg.com Β» United States Β» Bugpoint Β» Telegram Web
Bugpoint
Insecure TLS Configuration #3530

πŸ‘‰ https://hackerone.com/reports/1639423

πŸ”Ή Severity: Low
πŸ”Ή Reported To: Hyperledger
πŸ”Ή Reported By: #bhaskar_ram
πŸ”Ή State: πŸ”΄ N/A
πŸ”Ή Disclosed: August 1, 2022, 2:04pm (UTC)
357 views
Bugpoint
Found Origin IP's lead to access to gitlab

πŸ‘‰ https://hackerone.com/reports/1637577

πŸ”Ή Severity: Medium
πŸ”Ή Reported To: GitLab
πŸ”Ή Reported By: #m-narayanan
πŸ”Ή State: βšͺ️ Informative
πŸ”Ή Disclosed: August 2, 2022, 4:51am (UTC)
347 views
Bugpoint
One-click account hijack for anyone using Apple sign-in with Reddit, due to response-type switch + leaking href to XSS on www.redditmedia.com

πŸ‘‰ https://hackerone.com/reports/1567186

πŸ”Ή Severity: Critical | πŸ’° 10,000 USD
πŸ”Ή Reported To: Reddit
πŸ”Ή Reported By: #fransrosen
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 2, 2022, 3:13pm (UTC)
πŸ”₯8πŸ‘3
361 views
Bugpoint
XSS in redditmedia.com can compromise data of reddit.com

πŸ‘‰ https://hackerone.com/reports/862882

πŸ”Ή Severity: Medium
πŸ”Ή Reported To: Reddit
πŸ”Ή Reported By: #keer0k
πŸ”Ή State: πŸ”΄ N/A
πŸ”Ή Disclosed: August 3, 2022, 3:40pm (UTC)
349 views
Bugpoint
Unrestricted File Upload Blind Stored Xss in subdomain ads.tiktok.com

πŸ‘‰ https://hackerone.com/reports/1577370

πŸ”Ή Severity: Low | πŸ’° 250 USD
πŸ”Ή Reported To: TikTok
πŸ”Ή Reported By: #mrzheev
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 4, 2022, 1:31am (UTC)
πŸ‘1
347 views
Bugpoint
Sensei LMS IDOR to send message

πŸ‘‰ https://hackerone.com/reports/1592596

πŸ”Ή Severity: Low | πŸ’° 100 USD
πŸ”Ή Reported To: Automattic
πŸ”Ή Reported By: #ghimire_veshraj
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 4, 2022, 10:17am (UTC)
349 views
Bugpoint
Unauthenticated Private Messages DIsclosure via wordpress Rest API

πŸ‘‰ https://hackerone.com/reports/1590237

πŸ”Ή Severity: Medium | πŸ’° 350 USD
πŸ”Ή Reported To: Automattic
πŸ”Ή Reported By: #ghimire_veshraj
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 4, 2022, 10:45am (UTC)
354 views
Bugpoint
Getting access of mod logs from any public or restricted subreddit with IDOR vulnerability

πŸ‘‰ https://hackerone.com/reports/1658418

πŸ”Ή Severity: High | πŸ’° 5,000 USD
πŸ”Ή Reported To: Reddit
πŸ”Ή Reported By: #high_ping_ninja
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 4, 2022, 7:38pm (UTC)
πŸ‘3
361 views
Bugpoint
Fix : (Security) Mitigate Path Traversal Bug

πŸ‘‰ https://hackerone.com/reports/1635321

πŸ”Ή Severity: Low | πŸ’° 200 USD
πŸ”Ή Reported To: Hyperledger
πŸ”Ή Reported By: #bhaskar_ram
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 5, 2022, 9:41pm (UTC)
338 views
Bugpoint
Ingress-nginx path allows retrieval of ingress-nginx serviceaccount token

πŸ‘‰ https://hackerone.com/reports/1382919

πŸ”Ή Severity: High | πŸ’° 2,500 USD
πŸ”Ή Reported To: Kubernetes
πŸ”Ή Reported By: #gaffy
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 6, 2022, 7:14am (UTC)
πŸ‘1
348 views
Bugpoint
cross site scripting in : mtn.bj

πŸ‘‰ https://hackerone.com/reports/1264834

πŸ”Ή Severity: High
πŸ”Ή Reported To: MTN Group
πŸ”Ή Reported By: #alimanshester
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 6, 2022, 11:19am (UTC)
335 views
Bugpoint
RCE vulnerability in Hyperledger Fabric SDK for Java

πŸ‘‰ https://hackerone.com/reports/801370

πŸ”Ή Severity: Medium | πŸ’° 200 USD
πŸ”Ή Reported To: Hyperledger
πŸ”Ή Reported By: #freskimo
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 6, 2022, 5:37pm (UTC)
316 views
Bugpoint
HTTP PUT method is enabled downloader.ratelimited.me

πŸ‘‰ https://hackerone.com/reports/545136

πŸ”Ή Severity: High
πŸ”Ή Reported To: RATELIMITED
πŸ”Ή Reported By: #codeslayer137
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 7, 2022, 2:01am (UTC)
322 views
Bugpoint
Brute Force of fabric-ca server admin account

πŸ‘‰ https://hackerone.com/reports/411364

πŸ”Ή Severity: High | πŸ’° 1,500 USD
πŸ”Ή Reported To: Hyperledger
πŸ”Ή Reported By: #xiaoc
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 6, 2022, 5:36pm (UTC)
298 views
Bugpoint
Enrolling to a CA that returns an empty response crashes the node process

πŸ‘‰ https://hackerone.com/reports/506412

πŸ”Ή Severity: Medium | πŸ’° 500 USD
πŸ”Ή Reported To: Hyperledger
πŸ”Ή Reported By: #mttrbrts
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 6, 2022, 5:37pm (UTC)
333 views
Bugpoint
Anonymous access control - Payments Status

πŸ‘‰ https://hackerone.com/reports/1546726

πŸ”Ή Severity: Medium | πŸ’° 100 USD
πŸ”Ή Reported To: Omise
πŸ”Ή Reported By: #codeslayer137
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 7, 2022, 1:59am (UTC)
361 views
Bugpoint
Lack of Rate limit while joining video call in talk section which is password protected

πŸ‘‰ https://hackerone.com/reports/1596673

πŸ”Ή Severity: Low | πŸ’° 250 USD
πŸ”Ή Reported To: Nextcloud
πŸ”Ή Reported By: #error2001
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 8, 2022, 6:58am (UTC)
365 views
Bugpoint
xmlrpc.php FILE IS enable it will used for Bruteforce attack and Denial of Service(DoS)

πŸ‘‰ https://hackerone.com/reports/1622867

πŸ”Ή Severity: Medium
πŸ”Ή Reported To: Top Echelon Software
πŸ”Ή Reported By: #anonymmert12
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 8, 2022, 1:35pm (UTC)
378 views
Bugpoint
Ability to escape database transaction through SQL injection, leading to arbitrary code execution

πŸ‘‰ https://hackerone.com/reports/1663299

πŸ”Ή Severity: High
πŸ”Ή Reported To: HackerOne
πŸ”Ή Reported By: #jobert
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 9, 2022, 6:58pm (UTC)
338 views
Bugpoint
[CRITICAL] Full account takeover without user interaction on sign with Apple flow

πŸ‘‰ https://hackerone.com/reports/1639802

πŸ”Ή Severity: Critical | πŸ’° 3,000 USD
πŸ”Ή Reported To: Glassdoor
πŸ”Ή Reported By: #emanelyazji
πŸ”Ή State: 🟒 Resolved
πŸ”Ή Disclosed: August 9, 2022, 7:26pm (UTC)
πŸ”₯3
346 views
2025/10/26 07:27:50
Back to Top
HTML Embed Code: