Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Bug Bounty Intelligence

Source: HackerOne public disclosures · updated every 6h

Browse publicly disclosed bug bounty reports from HackerOne. Filter by severity, weakness type, or program. Cross-referenced with CVE IDs where available.

Disclosed Reports
12,219
CVE-linked
1,854
Programs
342
New This Week
10
Severity: All CriticalHighMediumLow
Type: All Information Disclosure 1173 Cross-site Scripting (XSS) … 747 Violation of Secure Design … 719 Improper Access Control - Generic 656 Improper Authentication - Generic 652 Cross-site Scripting (XSS) … 513 Uncontrolled Resource Consumption 483 Cross-site Scripting (XSS) … 461 Cross-Site Request Forgery (CSRF) 421 Privilege Escalation 375
rpcbind "rpcbomb" CVE-2017-8779, CVE-2017-8804
Internet Bug Bounty Uncontrolled Resource Consumption (CWE-400)CVE-2017-8779CVE-2017-8804
High
2019-10-14
CVE-2015-8874 Stack overflow with imagefilltoborder
Internet Bug Bounty Uncontrolled Resource Consumption (CWE-400)CVE-2015-8874
Unknown
2019-10-13
Crash (DoS) when parsing a hostile TIFF
Internet Bug Bounty Uncontrolled Resource Consumption (CWE-400)
Medium
2019-10-13
libtiff 4.0.6 heap bufer overflow / out of bounds read (CVE-2016-9273)
Internet Bug Bounty Uncontrolled Resource Consumption (CWE-400)CVE-2016-9273
Medium
2019-10-04
Denial of service in libxml2, using malicious lzma file to consume available system memory
Internet Bug Bounty Uncontrolled Resource Consumption (CWE-400)
High
2019-10-04
Use after free with assign by ref to overloaded objects
Internet Bug Bounty Uncontrolled Resource Consumption (CWE-400)
Unknown
2019-10-04
pngcrush double-free/segfault could result in DoS (CVE-2015-7700)
Internet Bug Bounty Uncontrolled Resource Consumption (CWE-400)CVE-2015-7700
Unknown
2019-10-04
Clientside resource Exhausting by exploiting gitlab math rendering
GitLab Uncontrolled Resource Consumption (CWE-400)
Low
2019-10-01
Application level denial of service due to shutting down the server
Node.js third-party modules Uncontrolled Resource Consumption (CWE-400)
Low
2019-09-27
DoS through PeerExplorer
Rootstock Labs Uncontrolled Resource Consumption (CWE-400)
High
2019-09-18
All functions that allow users to specify color code are vulnerable to ReDoS
GitLab Uncontrolled Resource Consumption (CWE-400)
Low
2019-08-21
Multiple HTTP/2 DOS Issues
Node.js Uncontrolled Resource Consumption (CWE-400)
High
2019-08-16
Resource Consumption DOS on Edgemax v1.10.6
Ubiquiti Inc. Uncontrolled Resource Consumption (CWE-400)
High
2019-08-04
cookie injection allow dos attack to periscope.tv
X / xAI Uncontrolled Resource Consumption (CWE-400)
Medium
2019-07-03
CryptoNote: remote node DoS
Monero Uncontrolled Resource Consumption (CWE-400)
High
2019-07-03
Excessive Resource Usage
Monero Uncontrolled Resource Consumption (CWE-400)
Unknown
2019-07-03
(remote) exabyte allocation via load_from_binary() (DoS)
Monero Uncontrolled Resource Consumption (CWE-400)
High
2019-07-03
Computing hash of crafted block leads to crash in tree_hash()
Monero Uncontrolled Resource Consumption (CWE-400)
High
2019-07-03
Uploading large avatar images cause excessive CPU usage
Nextcloud Uncontrolled Resource Consumption (CWE-400)
Unknown
2019-06-27
DoS on the Issue page by exploiting Mermaid.
GitLab Uncontrolled Resource Consumption (CWE-400)
Medium
2019-05-13
Top Weakness Types
Most Active Programs
ProgramReportsMax $
U.S. Dept Of Defense896
Internet Bug Bounty817
HackerOne609
Nextcloud582
Shopify464
curl439
Node.js third-party modules307
GitLab258
X / xAI250 $2,500
Uber239 $9,895