Bugpoint – Telegram
Bugpoint
@bugpoint
1.05K subscribers
3.73K photos
3.73K links
Latest updates about disclosure bug bounty reports: tech details, impacts, bounties 📣

Rate👇
https://cutt.ly/bugpoint_rate
Feedback👇
https://cutt.ly/bugpoint_feedback

#️⃣ bug bounty disclosed reports
#️⃣ bug bounty write-ups
#️⃣ bug bounty teleg
Download Telegram
About
Blog
Apps
Platform
Join
Bugpoint
1.05K subscribers
Bugpoint
CSRF в m.vk.com

👉 https://hackerone.com/reports/300999

🔹 Severity: Medium | 💰 100 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 3:59pm (UTC)
242 views
Bugpoint
Reflected XSS в m.vk.com

👉 https://hackerone.com/reports/311913

🔹 Severity: High | 💰 500 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:06pm (UTC)
242 views
Bugpoint
Reflected xss в m.vk.com/chatjoin

👉 https://hackerone.com/reports/316475

🔹 Severity: High | 💰 500 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:07pm (UTC)
241 views
Bugpoint
CSRF на загрузку аудиозаписей

👉 https://hackerone.com/reports/329345

🔹 Severity: Medium | 💰 100 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:10pm (UTC)
234 views
Bugpoint
Злом (virus).. Смотрим кто голосовал в анонимном опросе!!

👉 https://hackerone.com/reports/388143

🔹 Severity: Medium | 💰 200 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:12pm (UTC)
224 views
Bugpoint
Open redirect на мобильной версии в контакте (m.vk.com

👉 https://hackerone.com/reports/456963

🔹 Severity: Medium | 💰 300 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:14pm (UTC)
220 views
Bugpoint
Просмотр новых фотографии со стены частной/закрытой группы или закрытого профиля.

👉 https://hackerone.com/reports/463902

🔹 Severity: Medium | 💰 300 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:15pm (UTC)
226 views
Bugpoint
Загружаем видеозаписи в основной альбом любой открытой группе/паблику.

👉 https://hackerone.com/reports/508506

🔹 Severity: High | 💰 300 USD
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:17pm (UTC)
241 views
Bugpoint
Reflected xss в m.vk.com/chatjoin

👉 https://hackerone.com/reports/1370240

🔹 Severity: Medium
🔹 Reported To: VK.com
🔹 Reported By: #executor
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:22pm (UTC)
262 views
Bugpoint
CSRF в виджетах

👉 https://hackerone.com/reports/1091296

🔹 Severity: No Rating | 💰 100 USD
🔹 Reported To: VK.com
🔹 Reported By: #circuit
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 4:30pm (UTC)
282 views
Bugpoint
Path Traversal CVE-2021-26086 CVE-2021-26085

👉 https://hackerone.com/reports/1369288

🔹 Severity: Medium
🔹 Reported To: MariaDB
🔹 Reported By: #kljunowsky
🔹 State: 🟤 Duplicate
🔹 Disclosed: November 5, 2021, 5:33pm (UTC)
281 views
Bugpoint
clickjacking on deleting user's clips [https://crossclip.com/clips]

👉 https://hackerone.com/reports/1294767

🔹 Severity: Low
🔹 Reported To: Logitech
🔹 Reported By: #hacking_fox
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 8:39pm (UTC)
289 views
Bugpoint
HackerOne Staging uses Production data for testing

👉 https://hackerone.com/reports/1392511

🔹 Severity: Low | 💰 1,000 USD
🔹 Reported To: HackerOne
🔹 Reported By: #tk0
🔹 State: 🟢 Resolved
🔹 Disclosed: November 5, 2021, 8:52pm (UTC)
294 views
Bugpoint
Broken Link Hijacking on kubernetes.io Documentation

👉 https://hackerone.com/reports/1331361

🔹 Severity: Low | 💰 100 USD
🔹 Reported To: Kubernetes
🔹 Reported By: #codermak
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 6:04pm (UTC)
284 views
Bugpoint
Broken link hijacing in https://kubernetes-csi.github.io/docs/drivers.html

👉 https://hackerone.com/reports/1212853

🔹 Severity: Medium | 💰 250 USD
🔹 Reported To: Kubernetes
🔹 Reported By: #milan0
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 6:04pm (UTC)
289 views
Bugpoint
REST API Endpoint leads to Unauthorized user disclosed private [ issue ] details

👉 https://hackerone.com/reports/1099489

🔹 Severity: High | 💰 1,000 USD
🔹 Reported To: Mail.ru
🔹 Reported By: #updatelap
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 6:48pm (UTC)
263 views
Bugpoint
kds.ucs.ru - раскрытие информации.

👉 https://hackerone.com/reports/1073551

🔹 Severity: High | 💰 150 USD
🔹 Reported To: Mail.ru
🔹 Reported By: #alexeysergeevich
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 7:03pm (UTC)
252 views
Bugpoint
restaurant.delivery-club.ru - возможность получить информацию об чужих акциях.

👉 https://hackerone.com/reports/1086453

🔹 Severity: Medium | 💰 150 USD
🔹 Reported To: Mail.ru
🔹 Reported By: #alexeysergeevich
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 7:03pm (UTC)
261 views
Bugpoint
[titans.3clans.ru] phpBB 3.0.8 - Захват аккаунта администратора + удалённое выполнение кода.

👉 https://hackerone.com/reports/1072857

🔹 Severity: No Rating | 💰 150 USD
🔹 Reported To: Mail.ru
🔹 Reported By: #alexeysergeevich
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 7:05pm (UTC)
286 views
Bugpoint
tmgame.mail.ru - Blind sql injection

👉 https://hackerone.com/reports/943487

🔹 Severity: Medium | 💰 250 USD
🔹 Reported To: Mail.ru
🔹 Reported By: #alexeysergeevich
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 7:06pm (UTC)
315 views
Bugpoint
bit.games - sql-inj

👉 https://hackerone.com/reports/862836

🔹 Severity: Medium | 💰 1,500 USD
🔹 Reported To: Mail.ru
🔹 Reported By: #alexeysergeevich
🔹 State: 🟢 Resolved
🔹 Disclosed: November 6, 2021, 7:07pm (UTC)
349 views