Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Internet Bug Bounty - HackerOne Reports

View on HackerOne

674

Total Reports

35

Critical

123

High

194

Medium

138

Low

Buffer Overflow in smblib.c

Reported by: aaron_costello | Disclosed:

Medium

Weakness: Classic Buffer Overflow

Use of uninitialized value in ftp_getrc_msg method of mod_proxy_ftp.c

Reported by: chamal | Disclosed:

Low

Weakness: Information Disclosure

CVEs: CVE-2020-1934

Open Redirect Vulnerability in Action Pack

Reported by: wonda_tea_coffee | Disclosed:

Medium

Weakness: Open Redirect

Bounty: $2400.00

CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc

Reported by: ooooooo_q | Disclosed:

High

Bounty: $4860.00

OAUTH2 bearer not-checked for connection re-use

Reported by: monnerat | Disclosed:

Medium

Weakness: Improper Authentication - Generic

CVE-2024-41990: Potential denial-of-service in django.utils.html.urlize()

Reported by: mprogrammer | Disclosed:

Medium

Weakness: Allocation of Resources Without Limits or Throttling

Bounty: $2162.00

Adobe Flash Player PSDK Class Use After Free Vulnerability

Reported by: hhj4ck | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $5000.00

CVEs: CVE-2016-4248

netrc and redirect credential leak

Reported by: nyymi | Disclosed:

Low

Weakness: Information Disclosure

Bounty: $505.00

curl: stack-buffer overread during punycode conversions

Reported by: z2_ | Disclosed:

Low

Weakness: Buffer Over-read

CVEs: CVE-2024-6874

libcurl: freeing stack buffer during x509 certificate parsing

Reported by: z2_ | Disclosed:

Medium

Weakness: Memory Corruption - Generic

CVEs: CVE-2024-6197

Integer underflow / arbitrary null write in fread/gzread

Reported by: fms | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

get_icu_value_internal out-of-bounds read

Reported by: fms | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

imagescale out-of-bounds read

Reported by: fms | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $500.00

Multiple vulnerabilities related to PCRE functions (already fixed)

Reported by: mongo | Disclosed:

Weakness: Memory Corruption - Generic

CVE-2017-13040 The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions.

Reported by: karas | Disclosed:

High

Weakness: Buffer Over-read

Bounty: $500.00

CVEs: CVE-2017-13040

CVE-2017-13041 The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_nodeinfo_print().

Reported by: karas | Disclosed:

High

Weakness: Buffer Over-read

Bounty: $500.00

CVEs: CVE-2017-13041

Double free vulnerability in Flash Player Settings Manager (CVE-2015-0346)

Reported by: jouko | Disclosed:

Weakness: Memory Corruption - Generic

Bounty: $5000.00

CVE-2024-45230 - Potential denial-of-service in django.utils.html.urlize() (Another pattern)

Reported by: mprogrammer | Disclosed:

Medium

Weakness: Allocation of Resources Without Limits or Throttling

Bounty: $2162.00

Pickle deserialization vulnerability in XComs

Reported by: zpbrent | Disclosed:

Low

Weakness: Deserialization of Untrusted Data

Denial of Service caused by HTTP/2 CONTINUATION Flood

Reported by: bart | Disclosed:

High

Weakness: Uncontrolled Resource Consumption

Bounty: $4860.00

CVEs: CVE-2024-24549

Previous Page 4 of 34 Next