关键字【Uber】的搜索结果共144记录

公开时间 奖金 作者 标题 厂商 漏洞类型
2018-10-04 $1000.0 0x0luke XSS on partners.uber.com due to no user input sanitisation Uber Cross-site Scripting (XSS) - Generic
2018-09-16 $2000.0 mefkan Reflected XSS on Partners Subdomain Uber none
2018-08-27 $1000.0 peuch Information Leakage - GitHub - VCenter configuration scripts, StorMagic usernames and password along with default ESXi root password Uber none
2018-08-08 $500.0 orange Improper Access Control on Onelogin in multi-layered architecture Uber Improper Access Control - Generic
2017-12-26 $ gregoryvperry muber-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint Uber Cross-site Scripting (XSS) - Reflected
2017-12-26 $ gregoryvperry It's possible to view configuration and/or source code on uchat.awscorp.uberinternal.com without Uber Improper Authentication - Generic
2017-12-24 $ gregoryvperry The Uber Promo Customer Endpoint Does Not Implement Multifactor Authentication, Blacklisting or Rate Limiting Uber Brute Force
2017-12-24 $ gregoryvperry The Microsoft Store Uber App Does Not Implement Server-side Token Revocation Uber Insufficient Session Expiration
2017-12-24 $ gregoryvperry The Microsoft Store Uber App Does Not Implement Certificate Pinning Uber Improper Certificate Validation
2017-09-05 $8500.0 mishre SAML Authentication Bypass on uchat.uberinternal.com Uber Improper Authentication - Generic
2017-07-13 $5000.0 arneswinnen Authentication bypass on auth.uber.com via subdomain takeover of saostatic.uber.com Uber Improper Authentication - Generic
2017-06-28 $ temmyscript deleting payment profile during active trip puts account into arrears but active trip is temporarily “free” Uber Business Logic Errors
2017-06-02 $2000.0 vijay_kumar phone number exposure for riders/drivers given email/uuid Uber Information Exposure Through an Error Message
2017-05-26 $ hurthearts Session not expired When logout [partners.uber.com] Uber none
2017-05-17 $10000.0 procode701 password reset token leaking allowed for ATO of an Uber account Uber Improper Authentication - Generic