[公告]不安全上线【我的收藏】功能
2019-09-26 17:32:30  •  阅读 ♾  
[公告]不安全更换新域名为: buaq.net 短域名:https://f5.pm
2019-09-26 17:32:30  •  阅读 ♾  
Information Disclosure on https://rpc.sifchain.finance/
2021-05-15 15:02:53  •  阅读 19 •  点我收藏   
private passenger information is exposed to the Uber Driver app during ride dispatch ("Ping") events
2021-05-15 09:52:27  •  阅读 21 •  点我收藏   
Zero click account Takeover due to Api misconfiguration
2021-05-15 09:52:27  •  阅读 17 •  点我收藏   
Full account takeover of any user through reset password
2021-05-15 09:52:27  •  阅读 18 •  点我收藏   
RCE when removing metadata with ExifTool
2021-05-15 09:52:27  •  阅读 18 •  点我收藏   
Subdomain takeover of ████.jitsi.net
2021-05-15 06:30:32  •  阅读 20 •  点我收藏   
Request Access for Uber Device Returns Management Platform (https://www.eats-devicereturns.com/request-access/) Bypass Allows Access to PII
2021-05-15 06:30:32  •  阅读 19 •  点我收藏   
No Valid SPF Records/don't have DMARC record
2021-05-15 06:30:32  •  阅读 17 •  点我收藏   
Unrestricted File Upload Results in Cross-Site Scripting Attacks
2021-05-15 06:30:32  •  阅读 17 •  点我收藏   
Corss-Tenant IDOR on Business allowing escalation privilege, invitation takeover, and edition of any other Businesses' employees
2021-05-15 06:30:32  •  阅读 17 •  点我收藏   
No Rate Limit protection in user subscription form
2021-05-15 06:30:32  •  阅读 18 •  点我收藏   
Found a url on source code which was disclosing different juicy informations like ip addresses and available endponts
2021-05-15 01:25:24  •  阅读 22 •  点我收藏   
Path Transversal inside saveContracts.js
2021-05-14 11:30:00  •  阅读 21 •  点我收藏   
Email spoofing
2021-05-13 21:42:16  •  阅读 17 •  点我收藏   
Lack warning label when receiving a letter
2021-05-13 19:59:09  •  阅读 21 •  点我收藏   
CSRF allows to test email forwarding
2021-05-13 16:29:27  •  阅读 21 •  点我收藏   
Cross Origin Resource Sharing Misconfiguration | Lead to sensitive information.
2021-05-13 13:02:42  •  阅读 19 •  点我收藏   
Wordpress Users Disclosure (/wp-json/wp/v2/users/) on sifchain.finance
2021-05-13 11:18:55  •  阅读 17 •  点我收藏   
CORS Misconfiguration
2021-05-13 06:11:19  •  阅读 21 •  点我收藏   
Social media links not working
2021-05-13 06:11:19  •  阅读 22 •  点我收藏   
SSRF at jira.plazius.ru - CVE-2019-8451
2021-05-13 04:28:30  •  阅读 24 •  点我收藏   
Wrong Url in Main Page
2021-05-13 01:03:58  •  阅读 23 •  点我收藏   
Получение локального пути до файла [geekbrains.ru]
2021-05-13 01:03:58  •  阅读 22 •  点我收藏   
Path traversal lead to LFR via [CVE-2019-3394]
2021-05-13 01:03:58  •  阅读 20 •  点我收藏   
Moodle XSS on evolve.glovoapp.com
2021-05-12 19:47:34  •  阅读 21 •  点我收藏   
███ on https://████ enable ███ scraping, injection, stored XSS
2021-05-12 07:40:03  •  阅读 21 •  点我收藏   
XSS via X-Forwarded-Host header
2021-05-12 07:40:03  •  阅读 21 •  点我收藏   
https://████ is vulnerable to cve-2020-3452
2021-05-12 07:40:03  •  阅读 24 •  点我收藏   
Path Traversal - [ CVE-2020-3452 ]
2021-05-12 07:40:03  •  阅读 18 •  点我收藏   
DOM Based XSS on https://████ via backURL param
2021-05-12 07:40:03  •  阅读 23 •  点我收藏