Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

HackerOne — Vulnerabilities & Security Advisories 470

Browse all 470 CVE security advisories affecting HackerOne. AI-powered Chinese analysis, POCs, and references for each vulnerability.

HackerOne operates a crowdsourced vulnerability disclosure platform, connecting organizations with ethical hackers to identify and remediate security flaws before malicious exploitation. The platform’s extensive record of 470 CVEs highlights a diverse attack surface, with historically common vulnerability classes including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation. These defects often stem from complex API integrations and web application logic errors inherent in its SaaS infrastructure. Notable security characteristics involve its reliance on third-party researchers, which introduces both robust coverage and potential insider threat vectors. While major public incidents have been relatively contained, the platform’s role as a central hub for vulnerability data makes it a high-value target for attackers seeking to disrupt the disclosure ecosystem or harvest sensitive intelligence. Maintaining strict access controls and transparent reporting mechanisms remains critical for preserving trust and ensuring the integrity of the bug bounty process across its global user base.

Top products by HackerOne: sequelize node module hapi node module RubyGems coffeescript node module sanitize-html node module serve node module i18next node module crud-file-server node module marked node module html-janitor node module private_address_check ruby gem m-server express-cart ws node module remarkable node module Nextcloud Server liyujing node module serverwzl node module npm-script-demo node module pandora-doomsday node module rtcmulticonnection-client node module dcserver node module tmock node module node-server-forfront node module welcomyzt node module pooledwebsocket node module cuciuci node module forwarded node module parsejson node module fresh node module
CVE IDTitleCVSSSeverityPublished
CVE-2016-10602 haxe 安全漏洞 — haxe node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10603 air-sdk 安全漏洞 — air-sdk node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10604 dalek-browser-chrome 安全漏洞 — dalek-browser-chrome node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10605 dalek-browser-ie 安全漏洞 — dalek-browser-ie node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10606 grunt-webdriver-qunit 安全漏洞 — grunt-webdriver-qunit node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10607 openframe-glsviewer 安全漏洞 — openframe-glslviewer node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10608 robot-js 安全漏洞 — robot-js node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10609 chromedriver126 安全漏洞 — chromedriver126 node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10610 unicode-json 安全漏洞 — unicode-json node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10612 dalek-browser-ie-canary 安全漏洞 — dalek-browser-ie-canary node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10613 bionode-sra 安全漏洞 — bionode-sra node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10614 httpsync 安全漏洞 — httpsync node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10615 curses 安全漏洞 — curses node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10616 openframe-image 安全漏洞 — openframe-image node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10617 box2d-native 安全漏洞 — box2d-native node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10618 node-browser 安全漏洞 — node-browser node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10619 pennyworth 安全漏洞 — pennyworth node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10620 atom-node-module-installer 安全漏洞 — atom-node-module-installer node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10621 fibjs 安全漏洞 — fibjs node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10622 nodeschnaps 安全漏洞 — nodeschnaps node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10623 macaca-chromedriver-zxa 安全漏洞 — macaca-chromedriver-zxa node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10624 selenium-chromedriver 安全漏洞 — selenium-chromedriver node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10625 headless-browser-lite 安全漏洞 — headless-browser-lite node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10626 mystem3 安全漏洞 — mystem3 node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10628 selenium-wrapper 安全漏洞 — selenium-wrapper node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10629 nw-with-arm 安全漏洞 — nw-with-arm node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10630 install-g-tes 安全漏洞 — install-g-test node moduleCWE-311 5.9 -2018-06-01
CVE-2016-10631 jvminstall安全漏洞 — jvminstall node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10632 apk-parser2 安全漏洞 — apk-parser2 node moduleCWE-311 8.1 -2018-06-01
CVE-2016-10633 dwebp-bin 安全漏洞 — dwebp-bin node moduleCWE-311 8.1 -2018-06-01

This page lists every published CVE security advisory associated with HackerOne. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.