Bime

Looking to submit vulnerabilities to this program?

Reports to this program can be sent via HackerOne.

9 total issues disclosed

$4,400 total paid publicly

Most disclosed (3 disclosures) — Information Disclosure

View disclosed reports

Disclosed Reports

Report Title	Vulnerability Type	Disclosed By	Severity	Disclosed on
SSRF issue	Command Injection - Generic	4lemon	No rating	2017-03-18
Subdomain takeover at ws.bimedb.com due to unclaimed Amazon S3 bucket	None supplied	sameoldstory	No rating	2016-10-05
SSRF in the Connector Designer (REST and Elastic Search)	Privilege Escalation	agarri_fr	No rating	2016-09-14
The JDBC driver used by the Vertica connector allows to create files on the backends	None supplied	agarri_fr	No rating	2016-09-14
XXE in the Connector Designer	Information Disclosure	agarri_fr	No rating	2016-09-14
Urgent: attacker can access every data source on Bime	Information Disclosure	jobert	No rating	2016-07-27
Attacker can access graphic representation of every query	Information Disclosure	jobert	No rating	2016-07-27
Bime Unable to load Data Sources	Memory Corruption - Generic	anish2good	No rating	2016-06-27
Subdomain takeover due to unclaimed Amazon S3 bucket on a2.bime.io	Cross-site Scripting (XSS) - Generic	michiel	No rating	2016-06-22