Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Aiven Ltd - HackerOne Reports

View on HackerOne

6

Total Reports

4

Critical

2

High

0

Medium

0

Low

0-day Cross Origin Request Forgery vulnerability in Grafana 8.x .

Reported by: abrahack | Disclosed:

High

Weakness: Cross-Site Request Forgery (CSRF)

CVEs: CVE-2022-21703

Apache Flink RCE via GET jar/plan API Endpoint

Reported by: jarij | Disclosed:

Critical

Weakness: Command Injection - Generic

Bounty: $6000.00

Kafka Connect RCE via connector SASL JAAS JndiLoginModule configuration

Reported by: jarij | Disclosed:

Critical

Weakness: Deserialization of Untrusted Data

Bounty: $5000.00

Grafana RCE via SMTP server parameter injection

Reported by: jarij | Disclosed:

Critical

Weakness: CRLF Injection

Bounty: $5000.00

Zero day path traversal vulnerability in Grafana 8.x allows unauthenticated arbitrary local file read

Reported by: j0v | Disclosed:

High

Weakness: Path Traversal

Bounty: $1000.00

[Kafka Connect] [JdbcSinkConnector][HttpSinkConnector] RCE by leveraging file upload via SQLite JDBC driver and SSRF to internal Jolokia

Reported by: jarij | Disclosed:

Critical

Weakness: Unrestricted Upload of File with Dangerous Type

Bounty: $5000.00