Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Internet Bug Bounty - HackerOne Reports

View on HackerOne

674

Total Reports

35

Critical

123

High

194

Medium

138

Low

CVE-2017-5204: The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print()

Reported by: geeknik | Disclosed:

High

Weakness: Memory Corruption - Generic

CVE-2017-5341 The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print()

Reported by: geeknik | Disclosed:

High

Weakness: Memory Corruption - Generic

CVE-2017-5482 The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print().

Reported by: geeknik | Disclosed:

High

Weakness: Memory Corruption - Generic

CVEs: CVE-2016-8575

CVE-2017-5342 In tcpdump before 4.9.0 a bug in multiple protocol parsers could cause a buffer overflow in print-ether.c:ether_print()

Reported by: geeknik | Disclosed:

High

Weakness: Memory Corruption - Generic

CVE-2017-5484 The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print()

Reported by: geeknik | Disclosed:

High

Weakness: Memory Corruption - Generic

CVE-2024-49761: ReDoS vulnerability in REXML

Reported by: manun | Disclosed:

Medium

Weakness: Uncontrolled Resource Consumption

wddx_deserialize use-after-free

Reported by: fms | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

SEH buffer overflow msgfmt_format_message

Reported by: fms | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $1000.00

PHP Integer Overflow in gdImageWebpCtx

Reported by: binvul | Disclosed:

Low

Weakness: Memory Corruption - Generic

imap_rfc822_parse_headers GS Violation

Reported by: fms | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

urllib HTTP header injection CVE-2016-5699

Reported by: guido | Disclosed:

Additional information for CVE-2016-5699

Reported by: ecbftw | Disclosed:

The “Malstaller” Attack, global hijacking of any installation process to achieve RCE with elevated privileges, Windows OS (vendor agnostic)

Reported by: penrose | Disclosed:

Weakness: Code Injection

Session WDDX Packet Deserialization Type Confusion Vulnerability

Reported by: ryat | Disclosed:

Weakness: Memory Corruption - Generic

Linux kernel: CVE-2017-7308: a signedness issue in AF_PACKET sockets

Reported by: xairy | Disclosed:

High

Weakness: Memory Corruption - Generic

CVEs: CVE-2017-7308

Linux kernel: CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch

Reported by: xairy | Disclosed:

High

Weakness: Memory Corruption - Generic

CVEs: CVE-2017-1000112

Negative size parameter (-1) in memcpy mbfl_strcut

Reported by: fms | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $1000.00

Silent omission of certificate hostname verification in LibreSSL and BoringSSL

Reported by: tiran | Disclosed:

Critical

Weakness: Improper Certificate Validation

CVEs: CVE-2018-8970

CVE-2023-28755: ReDoS vulnerability in URI

Reported by: dee-see | Disclosed:

Medium

Weakness: Uncontrolled Resource Consumption

CVEs: CVE-2023-28755

CVE-2022-35948: CRLF Injection in Nodejs ‘undici’ via Content-Type

Reported by: k_h1 | Disclosed:

Medium

Weakness: CRLF Injection

Previous Page 2 of 34 Next