Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Internet Bug Bounty - HackerOne Reports

View on HackerOne

659

Total Reports

35

Critical

119

High

187

Medium

134

Low

Uninitialized Thumbail Data Leads To Memory Leakage in exif_process_IFD_in_TIFF

Reported by: hoangnguyen | Disclosed:

Weakness: Memory Corruption - Generic

CVE-2016-4796 OpenJPEG color_cmyk_to_rgb Out-of-Bounds Read Vulnerability

Reported by: binvul | Disclosed:

Weakness: Memory Corruption - Generic

CVEs: CVE-2016-4796

memory corruption in wordwrap function

Reported by: minhrau | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

integer overflow in preg_quote caused heap corruption

Reported by: minhrau | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

integer overflow in pg_escape_bytea caused heap corruption

Reported by: minhrau | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

CVE-2016-1924 OpenJPEG opj_tgt_reset Out-of-Bounds Read Vulnerability

Reported by: binvul | Disclosed:

Weakness: Memory Corruption - Generic

CVEs: CVE-2016-1924

Missing type check when unserializing SplArray

Reported by: ahihi | Disclosed:

Weakness: Memory Corruption - Generic

CVE-2016-5157 OpenJPEG opj_dwt_interleave_v Out-of-Bounds Write Vulnerability

Reported by: binvul | Disclosed:

Weakness: Memory Corruption - Generic

CVEs: CVE-2016-5157

integer overflow in fgetcsv caused heap corruption

Reported by: minhrau | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

integer overflow in pg_escape_string caused heap corruption

Reported by: minhrau | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

integer overflow in php_ldap_do_escape caused heap corruption

Reported by: minhrau | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

integer overflow in imap_binary caused heap corruption

Reported by: minhrau | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

CVE-2016-7418 PHP Out-Of-Bounds Read in php_wddx_push_element

Reported by: binvul | Disclosed:

Weakness: Memory Corruption - Generic

CVEs: CVE-2016-7418

Session WDDX Packet Deserialization Type Confusion Vulnerability

Reported by: ryat | Disclosed:

Weakness: Memory Corruption - Generic

[bower] Arbitrary File Write through improper validation of symlinks while package extraction

Reported by: skyn3t | Disclosed:

High

Weakness: Path Traversal

Bounty: $500.00

Regexes with large repetitions on empty sub-expressions take a very long time to parse

Reported by: addisoncrump | Disclosed:

High

Weakness: Uncontrolled Resource Consumption

Bounty: $4000.00

Out of bounds memory read in unserialize()

Reported by: hanno | Disclosed:

Medium

Weakness: Out-of-bounds Read

Bounty: $500.00

Silent omission of certificate hostname verification in LibreSSL and BoringSSL

Reported by: tiran | Disclosed:

Critical

Weakness: Improper Certificate Validation

CVEs: CVE-2018-8970

Permission model improperly protects against path traversal in Node.js 20

Reported by: tniessen | Disclosed:

High

Weakness: Path Traversal

Bounty: $2330.00

CVEs: CVE-2023-30584

CVE-2024-35200 in nginx

Reported by: noentry | Disclosed:

Medium

Weakness: NULL Pointer Dereference

Bounty: $2600.00

Page 1 of 33 Next