Getting started
Learn about vulnerability types 
Getting started in bug bounties 
Test your knowledge
Free Web Application Challenges
Guides for your hunts 
ZSeano's Methodology
Effective Note Taking for bug bounties
Useful Resources 
Disclosed HackerOne Reports 
Our community
Endorsed Members
Hackevents 
Member Articles Coda Program Statistics
3 total issues disclosed
$1,450 total paid publicly
Most disclosed (2 disclosures) — Improper Access Control - Generic
Disclosed Reports
| Report Title | Vulnerability Type | Disclosed By | Severity | Disclosed on |
|---|---|---|---|---|
| Unrestricted access to any "connected pack" on docs | Improper Access Control - Generic | 0xcrypto | Medium | 2020-04-15 |
| Lack or Origin check leads to Cross-Site Websocket Hijacking (CSWSH) | Improper Access Control - Generic | fisher | High | 2020-01-04 |
| Use Github pack with Coda employee github account (search code of Coda's private repositories) | None supplied | stefanofinding | Medium | 2020-01-02 |