SecNews Program Statistics
4 total issues disclosed
$300 total paid publicly
Most disclosed (2 disclosures) — Violation of Secure Design Principles
Disclosed Reports
| Report Title | Vulnerability Type | Disclosed By | Severity | Disclosed on |
|---|---|---|---|---|
| DOM based XSS in search functionality | Cross-site Scripting (XSS) - Generic | sameoldstory | Medium | 2016-11-16 |
| Text injection on error page. | Violation of Secure Design Principles | h4rsh4d | No rating | 2016-08-09 |
| Content spoofing due to the improper behavior of the not-found message | Violation of Secure Design Principles | malcolmx | No rating | 2016-08-09 |
| Querying private posts and changing post meta | Privilege Escalation | sameoldstory | No rating | 2016-08-09 |
Getting started
Learn about vulnerability types
Getting started in bug bounties
Test your knowledge
Free Web Application Challenges
Guides for your hunts
ZSeano's Methodology
Effective Note Taking for bug bounties
Useful Resources
Disclosed HackerOne Reports
Our community
Endorsed Members
Hackevents
Member Articles