Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Roblox - HackerOne Reports

View on HackerOne

5

Total Reports

1

Critical

1

High

3

Medium

0

Low

Reflected XSS through multiple inputs in the issue collector on Jira

Reported by: jackb898 | Disclosed:

Medium

Weakness: Cross-site Scripting (XSS) - Reflected

CVEs: CVE-2018-5230

Subdomain Takeover at creatorforum.roblox.com

Reported by: jackb898 | Disclosed:

High

Weakness: Privilege Escalation

Insecure redirect rule results in bypassing ban redirect on certain pages

Reported by: b62ba6bd20eb778df2a0691 | Disclosed:

Medium

Weakness: Insecure Direct Object Reference (IDOR)

Malformed string sent through FireServer leads to server freezing/hanging

Reported by: teeth | Disclosed:

Medium

Weakness: Uncontrolled Resource Consumption

Subdomain Takeover to Authentication bypass

Reported by: geekboy | Disclosed:

Critical