关键字【Reverb.com】的搜索结果共11记录

公开时间 奖金 作者 标题 厂商 漏洞类型
2018-10-01 $100.0 sandeep_hodkasia Stored xss in shop name @ lp.reverb.com Reverb.com Cross-site Scripting (XSS) - Stored
2018-09-08 $200.0 kiyell XSS in buying and selling pages, can created spoofed content (false login message) Reverb.com Cross-site Scripting (XSS) - Reflected
2018-09-08 $150.0 kiyell XSS in main search, use class tag to imitate Reverb.com core functionality, create false login window Reverb.com none
2018-08-31 $200.0 nadino Items bought for free due to lacks of quantity controls Reverb.com Business Logic Errors
2018-08-09 $100.0 m7mdharoun Basic auth details is still work on report ( 351555 ) Reverb.com Information Disclosure
2018-06-17 $750.0 bagipro Disclosure of all uploads to Cloudinary via hardcoded api secret in Android app Reverb.com none
2018-05-16 $50.0 albatraoz Api token exposed in Reverb.com's public github repository Reverb.com Information Disclosure
2018-05-15 $150.0 apapedulimu Bypassing CSRF Token On Reply Message & Send Message Reverb.com none
2018-05-06 $400.0 bigshaq Persistent XSS in https://sandbox.reverb.com/item/ Reverb.com Cross-site Scripting (XSS) - Stored
2018-04-27 $50.0 yaworsk IDOR - Ability to view unlisted products Reverb.com Violation of Secure Design Principles
2018-04-27 $150.0 yaworsk Possible Blind Writing to S3 Bucket Reverb.com Violation of Secure Design Principles