关键字【Cleartext Storage of Sensitive Information】的搜索结果共1631记录

公开时间 奖金 作者 标题 厂商 漏洞类型
2019-02-08 $5000.0 appsecure_in Client secret, server tokens for developer applications returned by internal API Uber Information Disclosure
2019-02-07 $ skyn3t [serve] Access unlisted internal files/folders revealing sensitive information Node.js third-party modules Information Exposure Through Directory Listing
2019-02-06 $ archang31 Information Disclosure (can access all Army HRC RFOs) within AIM view RFO Portal U.S. Dept Of Defense Information Disclosure
2019-02-04 $ hossammesbah21 ssl cookie without secure flag set Mail.ru Violation of Secure Design Principles
2019-02-03 $20000.0 yashrs Confidential data of users and limited metadata of programs and reports accessible via GraphQL HackerOne Information Disclosure
2019-02-02 $ sxw Missing Protection Mechanism in Mail Servers allows malicious user to use staff.ratelimited.me email could lead to identity theft. RATELIMITED Violation of Secure Design Principles
2019-02-01 $ tomk Remote attacker can impersonate Social users via ActivityPub API Nextcloud Deserialization of Untrusted Data
2019-01-30 $500.0 rijalrojan Disclosure of h1 challenges name through the calendar HackerOne Information Disclosure
2019-01-29 $ hamad_iheb Secure Pages Include Mixed Content Issue Eobot Violation of Secure Design Principles
2019-01-23 $ joaomatosf Remote Code Execution (RCE) in a Sony WebSystem Sony Deserialization of Untrusted Data
2019-01-23 $ joaomatosf Remote Code Execution (RCE) in a Sony Pictures WebSystem Sony Deserialization of Untrusted Data
2019-01-19 $ niwasaki WordPress User Enumeration - blog.newrelic.com New Relic Information Disclosure
2019-01-16 $100.0 godexmachine [online.games.mail.ru] - Sensitive information disclosure Mail.ru Information Disclosure
2019-01-16 $ godexmachine [3k.mail.ru] - Content spoofing Mail.ru Violation of Secure Design Principles
2019-01-14 $ aty Line feed injection in get request leads AWS S3 Bucket information disclosure RATELIMITED Information Disclosure