Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Tools for Humanity - HackerOne Reports

View on HackerOne

4

Total Reports

1

Critical

1

High

1

Medium

1

Low

Unlock underage blocked app without support interaction using airplane mode

Reported by: polem4rch | Disclosed:

Low

Weakness: Business Logic Errors

Bounty: $300.00

IDOR - Leaking of team data (name, email, ID, member ID) via POST /api/v1/graphql `FetchMemberships` operation

Reported by: aghayeone-blocked | Disclosed:

Medium

Weakness: Insecure Direct Object Reference (IDOR)

Bounty: $500.00

[Meetup][World ID][OIDC] Insufficient Filtering of "state" Parameter in Response Mode form_post leads to XSS and ATO

Reported by: lauritz | Disclosed:

Critical

Weakness: Cross-Site Scripting (XSS)

Race Condition Enables Bypassing Verification Check

Reported by: toormund | Disclosed:

High

Weakness: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Bounty: $3000.00