Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Bug Bounty Intelligence

Source: HackerOne public disclosures · updated every 6h

Browse publicly disclosed bug bounty reports from HackerOne. Filter by severity, weakness type, or program. Cross-referenced with CVE IDs where available.

Disclosed Reports
12,219
CVE-linked
1,854
Programs
342
New This Week
11
Severity: All CriticalHighMediumLow
Type: All Information Disclosure 1173 Cross-site Scripting (XSS) … 747 Violation of Secure Design … 719 Improper Access Control - Generic 656 Improper Authentication - Generic 652 Cross-site Scripting (XSS) … 513 Uncontrolled Resource Consumption 483 Cross-site Scripting (XSS) … 461 Cross-Site Request Forgery (CSRF) 421 Privilege Escalation 375
Program filter: sifchain
Username disclosure at Main Domain
Sifchain Information Disclosure (CWE-200)
Low
2021-12-09
Design Issues at Main Domain
Sifchain Violation of Secure Design Principles (CWE-657)
Low
2021-12-09
Wrong Implementation of Url in https://docs.sifchain.finance/
Sifchain Misconfiguration (CWE-16)
Low
2021-12-09
Wrong Url in Main page of sifchain.finance
Sifchain Misconfiguration (CWE-16)
Low
2021-12-09
Clickjacking
Sifchain UI Redressing (Clickjacking) (CAPEC-103)
Low
2021-12-09
Bootstrap library is vulnerable
Sifchain Inclusion of Functionality from Untrusted Control Sphere (CWE-829)
Low
2021-09-06
Vulnerable javascript dependency at Main domain
Sifchain Using Components with Known Vulnerabilities (CWE-1035)CVE-2019-8331CVE-2018-14041CVE-2018-14040CVE-2018-14042
Low
2021-08-02
Error Page Content Spoofing or Text Injection
Sifchain
Low
2021-06-15
HTTPS not enforced at dex.sifchain.finance
Sifchain Violation of Secure Design Principles (CWE-657)
Low
2021-06-10
No Rate Limit protection in user subscription form
Sifchain
Low
2021-05-14
Wordpress Users Disclosure (/wp-json/wp/v2/users/) on sifchain.finance
Sifchain
Low
2021-05-13
Wrong Url in Main Page
Sifchain Misconfiguration (CWE-16)
Low
2021-05-12
Email Spoofing on sifchain.finance
Sifchain
Low
2021-05-11
Subdomain Takeover At the Main Domain Of Your Site
Sifchain Improper Access Control - Generic (CWE-284)
Low
2021-05-07
wrong url in hackerone > goes to wix.com > unconnected
Sifchain Misconfiguration (CWE-16)
Low
2021-05-07
Top Weakness Types
Most Active Programs
ProgramReportsMax $
U.S. Dept Of Defense896
Internet Bug Bounty817
HackerOne609
Nextcloud582
Shopify464
curl439
Node.js third-party modules307
GitLab258
X / xAI250 $2,500
Uber239 $9,895