Getting started
Learn about vulnerability types 
Getting started in bug bounties 
Test your knowledge
Free Web Application Challenges
Guides for your hunts 
ZSeano's Methodology
Effective Note Taking for bug bounties
Useful Resources 
Disclosed HackerOne Reports 
Our community
Endorsed Members
Hackevents 
Member Articles MercadoLibre Program Statistics
6 total issues disclosed
$0 total paid publicly
Most disclosed (2 disclosures) — Cross-site Scripting (XSS) - Stored
Disclosed Reports
| Report Title | Vulnerability Type | Disclosed By | Severity | Disclosed on |
|---|---|---|---|---|
| Stored Cross-Site Scripting in mercadopago.com.ar | Cross-site Scripting (XSS) - Stored | elmago | High | 2025-03-13 |
| Sale cancellations from other sellers without restrictions | Insecure Direct Object Reference (IDOR) | capablanca0 | Critical | 2025-03-06 |
| Es posible poder navegar a cualquier pagina en Point Smart application | None supplied | andresbebe | Low | 2024-12-11 |
| Stored XSS in reclamos | Cross-site Scripting (XSS) - Stored | valent1ne | High | 2024-09-09 |
| Reflected Cross Site Scripting | None supplied | madara_ | Medium | 2024-07-23 |
| Account Takeover / Arbitrary File read and deletion / Partial code execution (intent redirection) | Code Injection | fr4via | High | 2024-06-28 |