Filters:
Sort by:
1,284 Results Found
View:
Critical
$5,000
Account Takeover via OAuth Misconfiguration
Discovered in the authentication flow of a popular SaaS platform allowing attackers to bypass authentication...
OAuth
Authentication
API
HackerOne
2 days ago
@security_researcher
High
$2,500
DOM XSS in E-commerce Checkout
Found in the checkout process of a major retailer's website allowing injection of malicious JavaScript through URL parameters...
XSS
DOM
Web
Bugcrowd
1 week ago
@webpentester
Medium
$1,000
SSRF in Internal Service API
Discovered in a cloud service provider's internal API allowing access to metadata and credentials of other tenants...
SSRF
Cloud
API
Intigriti
3 weeks ago
@cloudsec_expert
Critical
$10,000
RCE in Admin Dashboard
Remote code execution vulnerability found in the admin dashboard of a CMS platform through improper file upload validation...
RCE
File Upload
Web
HackerOne
1 month ago
@rce_hunter
High
$3,000
SQL Injection in Reporting Module
Time-based blind SQL injection found in the reporting dashboard of a financial application allowing data exfiltration...
SQLi
Database
Web
Bugcrowd
2 months ago
@db_hacker
Low
$500
CSRF in Profile Update
Cross-site request forgery vulnerability allowing attackers to modify user profile information without consent...
CSRF
Web
Intigriti
3 months ago
@webapp_tester
