HackerOne Bug Reports & Writeups
@Hackerone_Reports
36
subscribers
1
photo
152
links
All HackerOne Bug Reports & Writeups
Download Telegram
Join
HackerOne Bug Reports & Writeups
36 subscribers
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1775225
HackerOne
GitHub Security Lab disclosed on HackerOne: [CPP]Add query to...
https://github.com/github/securitylab/issues/551
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1587150
HackerOne
GitHub Security Lab disclosed on HackerOne: Python : Add query to...
https://github.com/github/securitylab/issues/561
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1898441
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1602234
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1812743
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1738939
HackerOne
GitHub Security Lab disclosed on HackerOne: [CPP]: Add query for...
https://github.com/github/securitylab/issues/688
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1738940
HackerOne
GitHub Security Lab disclosed on HackerOne: C/C++: Command...
https://github.com/github/securitylab/issues/700
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1775224
HackerOne
GitHub Security Lab disclosed on HackerOne: [python] TarSlip...
https://github.com/github/securitylab/issues/710
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1892351
HackerOne
curl disclosed on HackerOne: CVE-2023-27534: SFTP path ~ resolving...
## Summary:
libcurl `Curl_getworkingpath` function resolves `~` as remote users' home directory. This routine behaves in an undocumented way for `sftp` protocol. In particular it is said that `/~/`...
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1892780
HackerOne
curl disclosed on HackerOne: CVE-2023-27535: FTP too eager...
## Summary:
libcurl FTP(S) protocol will reuse connection even if different `CURLOPT_FTP_ACCOUNT` (libcurl) or `--ftp-account` (curl) is specified for different connections and the server requests...
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1895135
HackerOne
curl disclosed on HackerOne: CVE-2023-27536: GSS delegation too...
## Summary:
When considering reuse of existing connections different `CURLOPT_GSSAPI_DELEGATION` (libcurl) `--delegation` (curl) option is not taken into consideration. This can lead to reuse of...
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1898475
HackerOne
curl disclosed on HackerOne: CVE-2023-27538: SSH connection too...
## Summary:
There's a check if SSH keys match between new and existing connection when considering reuse. This check is broken due to wrong comparison:
`#define PROTO_FAMILY_SSH ...
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1891474
HackerOne
curl disclosed on HackerOne: CVE-2023-27533: Telnet option IAC...
## Summary:
`CURLOPT_TELNETOPTIONS` allows setting various telnet options for telnet protocol. Due to missing encoding of "Interpret as Command" `IAC` (0xff) character, the attacker who can control...
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1806387
HackerOne
U.S. Department of State disclosed on HackerOne: Accessing...
## Summary:
- I discovered an issue referred to as no-redirect in a subdomain on state.gov.
When you enter the page, it directs you directly to the entrance. When I examined it via burp suite, it...
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1425563
HackerOne
MTN Group disclosed on HackerOne: Remote code injection in Log4j on...
###Summary
Hello,
I would to like report this security flaw on http://mtn1app.mtncameroon.net . Using script nuclei i can found CVE-2021-44228. This is a critical issue cause as remote command...
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/1158823
HackerOne
MTN Group disclosed on HackerOne: Cross-site Scripting (XSS) -...
Hello,
I found a Reflected Cross site Scripting (XSS) on https://api.mtn.sd/carbon/admin/login.jsp, CVE-2020-17453 . With this security flaw is possible rewrite the content of page, executing...
HackerOne Bug Reports & Writeups
Channel name was changed to «
HackerOne Bug Reports & Writeups
»
HackerOne Bug Reports & Writeups
https://hackerone.com/reports/2646493
HackerOne
Internet Bug Bounty disclosed on HackerOne: CVE-2024-42005:...
###CVE-2024-42005: Potential SQL injection in QuerySet.values() and values_list()
QuerySet.values() and values_list() methods on models with a JSONField are subject to SQL injection in column...
HackerOne Bug Reports & Writeups
https://medium.com/@scriptshuva/instagram-and-meta-2fa-bypass-by-unprotected-backup-code-retrieval-in-accounts-center-c735ff650f10
Medium
Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center
Hello, I'm Shuva Saha (scriptshuva). Today, I will be discussing a vulnerability I discovered: bypass of two-factor authentication (2FA)…
HackerOne Bug Reports & Writeups
Upload functionality testing
😈
HackerOne Bug Reports & Writeups
https://ch44nd.medium.com/find-bugs-from-google-dorks-ec574c01471b
Medium
How I Got Sensitive Directory Using Google Dorks
Hello everyone,