Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

hostinger - HackerOne Reports

View on HackerOne

6

Total Reports

0

Critical

1

High

2

Medium

3

Low

GCM sender key leak

Reported by: cracko | Disclosed:

Low

Weakness: Cleartext Storage of Sensitive Information

Able to take over .zyrosite.com subdomains via `/v3/publish/connect-domain-hostinger` API endpoint

Reported by: tosun | Disclosed:

Low

Weakness: Improper Access Control - Generic

IDOR at https://cpanel.hostinger.com/billing/change-order-period

Reported by: yashrs | Disclosed:

Medium

Weakness: Insecure Direct Object Reference (IDOR)

subdomain takeover at status.hosting24.com

Reported by: omer | Disclosed:

Low

Weakness: Privilege Escalation

http://cpanel.hostinger.com/demo exposes Notifications and PII info

Reported by: nismo | Disclosed:

Medium

Weakness: Misconfiguration

1 Click Account Takeover via Auth Token Theft on marketing.hostinger.com

Reported by: aziz0x48 | Disclosed:

High

Weakness: Improper Access Control - Generic