RBKmoney Program Statistics
6 total issues disclosed
$0 total paid publicly
Most disclosed (1 disclosures) — None supplied
Disclosed Reports
Report Title | Vulnerability Type | Disclosed By | Severity | Disclosed on |
---|---|---|---|---|
SUBDOMAIN TAKEOVER [http://dev.rbk.money/] | Violation of Secure Design Principles | n00bsec | Medium | 2018-07-02 |
DOM-based Cross-Site Scripting in redirect url checkout | Cross-site Scripting (XSS) - DOM | dutchgraa | Medium | 2018-02-07 |
IDOR in merchant.rbmonkey.com allows deleting eShops of another user | None supplied | rijalrojan | High | 2018-01-29 |
Information Disclosure - Composer.lock | Information Disclosure | bhenner__ | None | 2018-01-29 |
Text manipulation in https://checkout.rbk.money | Code Injection | arifkhan | None | 2018-01-29 |
Open Redirection on auth.rbk.money | Open Redirect | abartan | Low | 2018-01-26 |