← Find more feeds

rss.ricterz.me

HackerOne Hacker Activity

Get the latest updates from HackerOne Hacker Activity directly as they happen.

Follow now 105 followers

Latest posts

Last updated 3 days ago

Kubernetes: Injection in path parameter of Ingress-nginx

3 days ago

Kubernetes: Injection in path parameter of Ingress-nginx

Read full

LinkedIn: IDOR to make someone attend or leave an event

4 days ago

LinkedIn: IDOR to make someone attend or leave an event

Read full

Lovable VDP: Open Redirect on lovable.dev via redirect parameter leads to phishing attacks

4 days ago

Lovable VDP: Open Redirect on lovable.dev via redirect parameter leads to phishing...

Read full

LinkedIn: Blocking a company page admin prevents him from delete paid media admin or edit his roles

4 days ago

LinkedIn: Blocking a company page admin prevents him from delete paid media...

Read full

Fastify: DoS via Unbounded Memory Allocation in sendWebStream on Fastify v5.7.0+ leads to OOM crash when backpressure is ignored

4 days ago

Fastify: DoS via Unbounded Memory Allocation in sendWebStream on Fastify v5.7.0+ leads...

Read full

GitHub: Missing Access Control in MigrationFile allows attacker to upload files to any Migration

5 days ago

GitHub: Missing Access Control in MigrationFile allows attacker to upload files to...

Read full

curl: SSTI leads to Command injection

5 days ago

curl: SSTI leads to Command injection

Read full

curl: Use after free in hyperfifo example

6 days ago

curl: Use after free in hyperfifo example

Read full

Omise: 2FA requirement bypass when inviting team members

9 days ago

Omise: 2FA requirement bypass when inviting team members

Read full

AWS VDP: Password Reuse Vulnerability on AWS Sign-in Page via Password Reset Flow leads to Security Policy Violation

11 days ago

AWS VDP: Password Reuse Vulnerability on AWS Sign-in Page via Password Reset...

Read full

Cloudflare Public Bug Bounty: AI Playground XSS to steal user-chat messages and access to connected MCP Server

11 days ago

Cloudflare Public Bug Bounty: AI Playground XSS to steal user-chat messages and...

Read full

curl: RTSP RTP Interleaved Parser Assertion Failure (Zero-Length RTP Payload)

11 days ago

curl: RTSP RTP Interleaved Parser Assertion Failure (Zero-Length RTP Payload)

Read full

Or log in

Everything you care about in one place

HackerOne Hacker Activity

Latest posts

Kubernetes: Injection in path parameter of Ingress-nginx

LinkedIn: IDOR to make someone attend or leave an event

Lovable VDP: Open Redirect on lovable.dev via redirect parameter leads to phishing attacks

LinkedIn: Blocking a company page admin prevents him from delete paid media admin or edit his roles

Fastify: DoS via Unbounded Memory Allocation in sendWebStream on Fastify v5.7.0+ leads to OOM crash when backpressure is ignored

GitHub: Missing Access Control in MigrationFile allows attacker to upload files to any Migration

curl: SSTI leads to Command injection

curl: Use after free in hyperfifo example

Omise: 2FA requirement bypass when inviting team members

AWS VDP: Password Reuse Vulnerability on AWS Sign-in Page via Password Reset Flow leads to Security Policy Violation

Cloudflare Public Bug Bounty: AI Playground XSS to steal user-chat messages and access to connected MCP Server

curl: RTSP RTP Interleaved Parser Assertion Failure (Zero-Length RTP Payload)

Try Feeder for free