| 4892 | Reflected XSS via AngularJS Template Injection |
Reflected XSS
CSTI |
Hostinger |
Taha Ibrahim Draidia |
Bug Bounty | 2018-01-17 | 2023-06-13 |
| 4883 | Reflected XSS + Possible Server Side Template Injection in HubSpot CMS ( All Websites Uses HubSpot was affected ) |
Reflected XSS |
HubSpot |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-01-24 | 2023-06-13 |
| 4862 | Oracle Cross Site Scripting Vulnerability -Adesh Kolte |
Reflected XSS |
Oracle |
Adesh Nandkishor kolte (@AdeshKolte) |
Bug Bounty | 2018-02-10 | 2023-06-13 |
| 4827 | Reflected XSS Moogaloop SWF ( Version < 6.2.x ) |
Flash XSS
Reflected XSS |
Vimeo |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-03-26 | 2023-06-13 |
| 4823 | How I hacked one cryptocurrency service |
Blind XSS
Reflected XSS
CSRF |
PayKassa |
Valeriy Shevchenko (@Krevetk0Valeriy) |
Bug Bounty | 2018-03-31 | 2023-06-13 |
| 4822 | XSS In sports.tw.campaign.yahoo.net |
Reflected XSS |
Yahoo! / Verizon Media |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-03-31 | 2023-06-13 |
| 4813 | Reflected XSS on www.zomato.com By Mustafa Hasan |
Reflected XSS |
Zomato |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-04-07 | 2023-06-13 |
| 4781 | Reflected XSS on Stack Overflow |
Reflected XSS |
Stack Overflow |
ssid (@newp_th) |
Bug Bounty | 2018-04-27 | 2023-06-13 |
| 4746 | Reflected XSS in Yahoo Subdomain ( hk.movies.yahoo.com ) |
Reflected XSS |
Yahoo! / Verizon Media |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-05-30 | 2023-06-13 |
| 4727 | Vulnerability Netflix (cross-site-scripting) XSS |
Reflected XSS |
Netflix |
Bada Diaz (@bada77) |
Bug Bounty | 2018-06-13 | 2023-06-13 |
| 4724 | Reflected XSS in 360totalsecurity |
Reflected XSS |
360totalsecurity |
Taha Smily (@tahakhantaha) |
Bug Bounty | 2018-06-14 | 2023-06-13 |
| 4723 | Reflected Client XSS at Amazon.com |
Reflected XSS |
Amazon |
Jonathan Bouman (@JonathanBouman) |
Bug Bounty | 2018-06-15 | 2023-06-13 |
| 4714 | Fastest Fix on Open Bug Bounty Platform |
Reflected XSS
CSRF |
Kevag Telekom GmbH |
Wen Bin KONG (@kongwenbin) |
Bug Bounty | 2018-06-24 | 2023-06-13 |
| 4681 | Google Assistant Bug Worth $3133.7 ! |
Reflected XSS |
Google |
Circle Ninja (@circleninja) |
Bug Bounty | 2018-07-21 | 2023-06-13 |
| 4657 | Reflected XSS Primagames.com |
Reflected XSS |
Prima Games |
Friendly (@SkeletorKeys) |
Bug Bounty | 2018-08-06 | 2023-06-13 |
| 4656 | Self XSS leads to blind XSS and reflected XSS. |
Blind XSS
Reflected XSS |
NA |
Friendly (@SkeletorKeys) |
Bug Bounty | 2018-08-06 | 2023-06-13 |
| 4620 | Reflected Swf XSS at ( https://plugins.svn.wordpress.org ) |
Flash XSS
Reflected XSS |
WordPress |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-09-07 | 2023-06-13 |
| 4616 | Reflected XSS in Django REST Framework Api at MapBox Subdomain |
Reflected XSS |
Mapbox |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-08-29 | 2023-06-13 |
| 4601 | Reflected XSS in Google Code Jam |
Reflected XSS |
Google |
Thomas Orlita (@ThomasOrlita) |
Bug Bounty | 2018-09-08 | 2023-06-13 |
| 4587 | Hacking your own antivirus for fun and profit (Safe browsing gone wrong) |
Reflected XSS |
Bullguard |
Martin Thirup Christensen (@Mthirup) |
Bug Bounty | 2018-09-14 | 2023-06-13 |
| 4581 | Reflected XSS at Philips.com |
Reflected XSS |
Philips |
Jonathan Bouman (@JonathanBouman) |
Bug Bounty | 2018-09-17 | 2023-06-13 |
| 4572 | R-XSS -> CSRF bypass to account takeover/ |
Reflected XSS
CSRF |
NA |
Nirmal Dahal (@TheNittam) |
Bug Bounty | 2018-09-21 | 2023-06-13 |
| 4571 | How I XSS’ed Uber and Bypassed CSP |
Reflected XSS |
Uber |
Efkan (@mefkansec) |
Bug Bounty | 2018-09-22 | 2023-06-13 |
| 4544 | My First 0day Exploit (CSP Bypass + Reflected XSS) #BUGBOUNTY |
Reflected XSS
CSP bypass |
NA |
Ali Tütüncü(@alicanact60) |
Bug Bounty | 2018-10-07 | 2023-06-13 |
| 4483 | OLX Reflected XSS on Resend Code link !! |
Reflected XSS |
OLX |
Harshad Gaikwad (@h4rsh4d) |
Bug Bounty | 2018-11-12 | 2023-06-13 |
