Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Coda - HackerOne Reports

View on HackerOne

3

Total Reports

0

Critical

1

High

2

Medium

0

Low

Unrestricted access to any "connected pack" on docs

Reported by: 0xcrypto | Disclosed:

Medium

Weakness: Improper Access Control - Generic

Use Github pack with Coda employee github account (search code of Coda's private repositories)

Reported by: stefanovettorazzi | Disclosed:

Medium

Lack or Origin check leads to Cross-Site Websocket Hijacking (CSWSH)

Reported by: fisher | Disclosed:

High

Weakness: Improper Access Control - Generic

Bounty: $800.00