2019 | HackerOne Private | CRLF Injection |
2019 | FanDuel | *** |
2019 | HackerOne Private | Subdomain Takeover |
2019 | HackerOne Private | XSS |
2019 | HackerOne Private | XSS |
2019 | HackerOne Private | Open Redirect |
2019 | Yandex | *** |
2019 | HackerOne Private | Information Disclosure |
2019 | Yandex | *** |
2019 | Indeed | *** |
2019 | QIWI | *** |
2019 | HackerOne Private | Insecure CORS |
2019 | Indeed | *** |
2019 | QIWI | *** |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Subdomain Takeover |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Information Disclosure |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Open Redirect |
2019 | HackerOne Private | Information Disclosure |
2019 | HackerOne Private | Information Disclosure |
2019 | Upserve | *** |
2019 | Upserve | *** |
2019 | HackerOne Private | Subdomain Takeover |
2019 | Ubiquiti Inc | *** |
2019 | Ubiquiti Inc | *** |
2019 | HackerOne Private | Information Disclosure |
2019 | HackerOne Private | Open Redirect |
2019 | Yandex | [monitoring.api.cloud.yandex.net] Information Disclosure |
2019 | HackerOne Private | Open Redirect |
2019 | QIWI | *** |
2019 | HackerOne Private | Arbitrary File Reading |
2019 | HackerOne Private | Web Cache Poisoning |
2019 | HackerOne Private | Open Redirect |
2019 | Mail.Ru | *** |
2019 | QIWI | *** |
2019 | Mail.Ru | *** |
2019 | HackerOne Private | Open Redirect |
2019 | Yandex | [floyd.chats.yandex.ru] Information Disclosure |
2019 | HackerOne Private | Remote Code Execution |
2019 | Mail.Ru | [special.mail.ru] Information Disclosure |
2019 | Twilio | *** |
2019 | Mozilla | *** |
2019 | Cisco Meraki | *** |
2019 | Spotify | *** |
2018 | Bugcrowd Private | CRLF Injection |
2018 | Sophos | *** |
2018 | HackerOne Private | Subdomain Takeover |
2018 | HackerOne Private | XSS |
2018 | HackerOne Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | Yandex | [sovetnik.market.yandex.ru] Insecure CORS |
2018 | Cisco Meraki | *** |
2018 | HackerOne Private | WAF Bypass |
2018 | QIWI | [p2p.qiwi.com] Nginx Alias Traversal |
2018 | Spotify | *** |
2018 | HackerOne Private | WAF Bypass |
2018 | HackerOne Private | WAF Bypass |
2018 | Mail.Ru | [o2.mail.ru] Nginx Alias Traversal |
2018 | HackerOne Private | Source Code Disclosure |
2018 | Tesla | [toolbox.tesla.com] Subdomain Takeover |
2018 | HackerOne Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | Bugcrowd Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | Qiwi | [*.rocketbank.ru] Web Cache Poisoning |
2018 | Yandex | [omega.zen-test.yandex.ru] Arbitrary File Reading |
2018 | HackerOne Private | Path Traversal |
2018 | Bugcrowd Private | CRLF Injection |
2018 | HackerOne Private | Open Redirect |
2018 | HackerOne Private | Source Code Disclosure |
2018 | HackerOne Private | Subdomain Takeover |
2018 | Starbucks | *** |
2018 | Grammarly | CRLF Injection |
2018 | Bugcrowd Private | Open Redirect |
2018 | HackerOne Private | XSS |
2018 | Bugcrowd Private | XSS |
2018 | Bugcrowd Private | CSRF |
2018 | Bugcrowd Private | XSS |
2018 | Bugcrowd Private | XSS |
2018 | Bugcrowd Private | CSRF |
2018 | Bugcrowd Private | CRLF Injection |
2018 | HackerOne Private | Subdomain Takeover |
2018 | HackerOne Private | XSS |
2018 | HackerOne Private | XSS |
2018 | Discourse | *** |
2018 | Mastercard | *** |
2018 | HackerOne Private | CRLF Injection |
2018 | Upserve | *** |
2018 | Yandex | *** |
2018 | Yandex | *** |
2018 | Yandex | *** |
2018 | Yandex | *** |
2018 | HackerOne Private | CRLF Injection |
2018 | Qiwi | *** |
2018 | HackerOne Private | Source Code Disclosure |
2018 | TTS | *** |
2018 | Yandex | *** |
2018 | Yandex | *** |
2018 | Vanilla | *** |
2018 | Netflix | *** |
2018 | Bitdefender | *** |
2018 | Yandex | *** |
2018 | Yandex | *** |
2018 | Yandex | *** |
2018 | Bugcrowd Private | CRLF Injection, XSS |
2018 | HackerOne Private | XSS |
2018 | Gatecoin | *** |
2018 | BitMEX | *** |
2018 | Deribit | *** |
2018 | HackerOne Private | XXE |
2018 | HackerOne Private | XXE |
2018 | HackerOne Private | Arbitrary File Reading |
2018 | HackerOne Private | Remote Code Execution |
2018 | HackerOne Private | DoS |
2018 | HackerOne Private | Business Logic Error |
2018 | HackerOne Private | Remote Code Execution |
2018 | Bugcrowd Private | Authentication Bypass |
2018 | Bugcrowd Private | XSS |
2018 | Bugcrowd Private | XSS |
2018 | Bugcrowd Private | CRLF Injection |
2018 | Plaid | *** |
2018 | Bugcrowd Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | Qiwi | *** |
2018 | Bugcrowd Private | CRLF Injection |
2018 | Detectify CS | *** |
2018 | Tesla | *** |
2018 | Yandex | [geointernal.mob.maps.yandex.net] Source Code Disclosure |
2018 | HackerOne Private | Open Redirect |
2018 | HackerOne Private | Open Redirect |
2018 | Yandex | [canvas.yandex.ru] Source Code Disclosure |
2018 | HackerOne Private | XSS |
2018 | HackerOne Private | XSS |
2017 | Spotify | *** |
2017 | Google | [poly.google.com] XSS |
2017 | Mail.Ru | *** |
2017 | HackerOne Private | CRLF Injection |
2017 | WePay | *** |
2017 | Bugcrowd Private | XSS |
2017 | Yandex | [st.yandex-team.ru] XSS |
2017 | Yandex | [pc.yandex.ru] Information Leakage |
2017 | Yandex | [portal-xiva.yandex.net] Source Code Disclosure |
2017 | Yandex | [pda-test.yandex.ru] Arbitrary File Reading |
2017 | Yandex | [auto.yandex.ru] CRLF Injection |
2017 | HackerOne Private | CRLF Injection |
2017 | HackerOne Private | Improper Authentication |
2017 | HackerOne Private | Information Leakage |
2017 | HackerOne Private | XSS |
2017 | HackerOne Private | XSS |
2017 | Bugcrowd Private | XSS |
2017 | HackerOne Private | Insecure CORS |
2017 | Bugcrowd Private | XSS |
2017 | Twitter | [dev.twitter.com] XSS, Open Redirect [2] |
2017 | Ubiquiti Networks | [dev-nightly.ubnt.com] Local File Reading |
2017 | Spotify | *** |
2017 | Bugcrowd Private | XSS |
2017 | HackerOne Private | XSS |
2017 | Bugcrowd Private | CRLF Injection |
2017 | HackerOne Private | XSS |
2017 | Tesla | *** |
2017 | HackerOne Private | Information Leakage |
2017 | HackerOne Private | XSS |
2017 | HackerOne Private | CRLF Injection |
2017 | HackerOne Private | XSS |
2017 | HackerOne Private | XSS |
2017 | HackerOne Private | XSS |
2017 | HackerOne Private | Open Redirect |
2017 | HackerOne Private | XSS |
2017 | HackerOne Private | XSS |
2017 | HackerOne Private | Open Redirect |
2017 | HackerOne Private | Open Redirect |
2017 | Yandex | [forms.yandex.ru] Open Redirect |
2017 | Ubiquiti Networks | [dev-unifi-go.ubnt.com] Insecure CORS |
2017 | StatusPage | *** |
2017 | Twitter | *** |
2017 | Google | *** |
2017 | Detectify CS | *** |
2017 | Detectify CS | *** |
2017 | Detectify CS | *** |
2017 | Ubiquiti Networks | [nutty.ubnt.com] DOM Based XSS |
2017 | Algolia | [github.algolia.com] DOM Based XSS |
2017 | Postmates | *** |
2017 | LocalTapiola | [www.lahitapiola.fi] Blacklist Bypass |
2017 | Airbnb | [m.airbnb.com] CRLF Injection and [airbnb.com] XSS |
2017 | HackerOne Private | Open Redirect |
2017 | HackerOne Private | CRLF Injection |
2016 | Bugcrowd Private | XSS |
2016 | HackerOne Private | CRLF Injection |
2016 | Bugcrowd Private | Information Leakage |
2016 | Bugcrowd Private | XSS |
2016 | Bugcrowd Private | XSS |
2016 | Bugcrowd Private | Cookie Injection |
2016 | LocalTapiola | *** |
2016 | LocalTapiola | [www.lahitapiola.fi] Cookie Injection |
2016 | Yandex | [awaps.yandex.ru] Information Leakage |
2016 | Dropbox | *** |
2016 | Qiwi | [qiwi.com] Information Leakage |
2016 | Quora | [Android] XSS |
2016 | Quora | [*.quora.com] XSS |
2016 | HackerOne Private | XSS |
2016 | HackerOne Private | CRLF Injection |
2016 | HackerOne Private | Source Code Disclosure |
2016 | Bugcrowd Private | Information Leakage |
2016 | LocalTapiola | [viestinta.lahitapiola.fi] XSS |
2016 | LocalTapiola | [viestinta.lahitapiola.fi] SQL Injection |
2016 | LocalTapiola | [viestinta.lahitapiola.fi] Email HTML Injection |
2016 | LocalTapiola | [viestinta.lahitapiola.fi] SQL Injection |
2016 | HackerOne Private | XSS |
2016 | HackerOne Private | XSS |
2016 | LocalTapiola | [verkkopalvelu.lahitapiola.fi] Open Redirect |
2016 | Qiwi | *** |
2016 | Brave Software | *** |
2016 | Bugcrowd Private | XSS |
2016 | Automattic | [*.wordpress.com] XSS |
2016 | HackerOne Private | Open Redirect |
2016 | HackerOne Private | Open Redirect |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Qiwi | *** |
2016 | Yahoo | [fb.member.yahoo.com] *** |
2016 | Qiwi | [qiwi.com] Information Disclosure |
2016 | Qiwi | [ibank.qiwi.ru] UI Redressing |
2016 | Qiwi | *** |
2016 | Imgur | *** |
2016 | Shopify | [apps.shopify.com] Open Redirect |
2016 | FoxyCart | [foxycart.com] *** |
2016 | Android | [Android] Elevation of privilege vulnerability in Android Launcher |
2016 | HackerOne Private | XSS |
2016 | HackerOne Private | CRLF Injection, XSS |
2016 | HackerOne Private | XSS |
2016 | HackerOne Private | Open Redirect |
2016 | Yandex | [*.yandex.ru] XSS |
2016 | HackerOne Private | Information Leakage |
2016 | HackerOne Private | XSS |
2016 | HackerOne Private | XSS |
2016 | HackerOne Private | XSS |
2016 | HackerOne Private | XSS |
2016 | Apache httpd | [httpd mod_userdir] CRLF Injection |
2016 | Yahoo | [analytics.help.yahoo.com] *** |
2016 | Ubiquiti Networks | [account-global.ubnt.com] CRLF Injection |
2016 | HackerOne Private | Open Redirect |
2016 | Sucuri | [support.sucuri.net] CRLF Injection |
2016 | Google | [*.vendortest.ext.google.com] CRLF Injection |
2016 | Mozilla | [mozilla.com] CRLF Injection |
2016 | Mail.Ru | [upload-*.my.mail.ru] Insecure Direct Object References |
2016 | Mail.Ru | [my.mail.ru] HTML Injection |
2016 | Yandex | [yandex.ru] Open Redirect |
2016 | Yandex | [yandex.ru] XSS |
2016 | Yandex | [yandex.ru] Open Redirect |
2016 | Yandex | [developer.store.yandex.ru] XSS |
2016 | HackerOne Private | XSS |
2016 | Uber | [riders.uber.com] *** |
2016 | Uber | [m.uber.com] Open Redirect |
2016 | Yandex | [fx.yandex.ru] Open Redirect |
2016 | Yandex | [pogoda.yandex.ru] Open Redirect |
2016 | Yahoo | [*.yql.yahoo.com] *** |
2016 | HackerOne Private | CRLF Injection, XSS |
2016 | Romit | [app.romit.io] *** |
2016 | Yandex | [api.lbs.yandex.ru] CRLF Injection, XSS |
2016 | Yandex | [events.yandex.ru] XSS |
2015 | Yandex | [developer.store.yandex.ru] CSRF |
2015 | Zopim | [status.zopim.com] Open Redirect |
2015 | Mozilla | [mozilla.com] *** |
2015 | Yandex | [delivery.yandex.ru] Open Redirect |
2015 | Yandex | [api.browser.yandex.ru] XSS, CRLF Injection, Open Redirect |
2015 | Yandex | [api.browser.yandex.ru] XSS |
2015 | Yandex | [api.browser.yandex.ru] Information Leakage |
2015 | Yandex | [mail.yandex.ru] Information Leakage |
2015 | Yandex | [yandex.ru] XSS |
2015 | Keybase | [keybase.io] Open Redirect |
2015 | Yandex | [api.direct.yandex.com] XSS |
2015 | Yandex | [m.afisha.yandex.ru] CRLF Injection |
2015 | Yandex | [mbo.market.yandex.ru] Insufficient Authorization |
2015 | Mail.Ru | [my.mail.ru] CRLF Injection |
2015 | Gratipay | [gratipay.com] CRLF Injection |
2015 | Yandex | [bnbym.yandex.com.tr] Open Redirect |
2015 | Yahoo | [login.yahoo.com] *** |
2015 | Shopify | [www.*.myshopify.com] CRLF Injection |
2015 | Mail.Ru | [s.mail.ru] CRLF Injection |
2015 | Yandex | [partner.yandex.ru] CSRF |
2015 | Yandex | [rabota.yandex.ru] Information Leakage |
2015 | Yandex | [rabota.yandex.ru] CSRF |
2015 | Yandex | [money.yandex.ru] XSS |
2015 | Yandex | [adtune.yandex.ru] Open Redirect |
2015 | Yandex | [maps.wiki.yandex.ru] UI Redressing |
2015 | Yandex | [*.yandex.ru] Information Leakage |
2015 | Yandex | [pdd.yandex.ru] XSS |
2015 | Yandex | [pdd.yandex.ru] XSS |
2015 | Yandex | [awaps.yandex.ru] Information Leakage |
2015 | Yandex | [mail.yandex.ru] XSS |
2015 | Yandex | [mtquality.maps.yandex.ru] Information Leakage, CSRF, SSRF |
2015 | Yandex | [partner.*.yandex.ru] Information Leakage |
2015 | Yandex | [mail.yandex.ru] XSS |
2015 | Yandex | [mail.yandex.ru] XSS |
2015 | Yandex | [browser.export.yandex.com] Information Leakage |
2015 | Yandex | [xml.yandex.ru] XSS |
2015 | Yandex | [tech.yandex.ru] XSS |
2015 | Trello | [blog.trello.com] CRLF Injection |
2015 | Trello | [trello.com] Open Redirect |
2015 | Yandex | [mail.yandex.ru] Information Leakage |
2014 | Yandex | [*.yandex.ru] Information Leakage |
2014 | Yandex | [balance.yandex.ru] XSS, Information Leakage |
2014 | Yandex | [address.yandex.ru] Open Redirect |
2014 | Yandex | [abo.uslugi.yandex.ru] Information Leakage |
2014 | Yandex | [tech.yandex.ru] Open Redirect |
2014 | Yandex | [abo.market.yandex.ru] XSS |
2014 | Yandex | [abo.market.yandex.ru] Information Leakage |
2014 | Yandex | [bo.uslugi.yandex.ru] Open Redirect |
2014 | Yandex | [mbo.market.yandex.ru] SQL Injection |
2014 | Yandex | [www.*.ya.ru] CRLF Injection |
2014 | Indeed | [*.indeed.com] *** |
2014 | Square | [account.squareup.com] *** |
2014 | Heroku | [*.heroku.com] *** |
2014 | Vimeo | [vimeopro.com] CRLF Injection |
2014 | Sunrise Calendar | [*.sunrise.am] Open Redirect |
2014 | Yandex | [company.yandex.com] UI Redress Attack |
2014 | Yandex | [pda.yaca.yandex.ru] Cookie Injection |
2014 | Mail.Ru | [connect.mail.ru] Memory Disclosure / IE XSS |
2014 | Facebook | [facebook.com] XSS |
2014 | Qiwi | [qiwi.com] *** |
2014 | Qiwi | [sms.qiwi.ru] *** |
2014 | Qiwi | [sms.qiwi.ru] *** |
2014 | Qiwi | [qiwi.com] Open Redirect |
2014 | Yandex | [company.yandex.com] Open Redirect |
2014 | Yandex | [company.yandex.com] XSS |
2014 | Yandex | [push.yandex.ru] Cross-Site WebSocket Hijacking |
2014 | Yandex | [mail.yandex.ru] Open Redirect |
2014 | Yandex | [mail.yandex.ru] XSS |
2014 | Yandex | [mail.yandex.ru] XSS |
2014 | Yandex | [mail.yandex.ru] Stored XSS |
2014 | Yandex | [mail.yandex.ru] XSS |
2014 | Yandex | [mail.yandex.ru] Content Spoofing |
2014 | Yandex | [mail.yandex.ru] XSS |
2014 | Yandex | [music.yandex.ru] Stored XSS |
2014 | Django | [Django] Cookie Injection [2] |
2014 | Yandex | [mail.yandex.ru] XSS |
2014 | Yahoo | [answers.yahoo.com] *** |
2014 | Yandex | [subs.yandex.ru] XSS |
2014 | Yandex | [news.yandex.ru] DOM-Based XSS |
2014 | Qiwi | [ishop.qiwi.com] CRLF Injection |
2014 | Yandex | [Yandex Direct] XSS |
2014 | Yandex | [fotki.yandex.ru] CSRF |
2014 | Yandex | [www.yandex.ru] XSS |
2014 | Yandex | [market.yandex.ru] Source Code Disclosure |
2014 | Yandex | [android-us.apps.yandex.ru] Cookie Injection |
2014 | Yandex | [*.yandex.ru] CRLF Injection |
2014 | Google | [Google Analytics] Cookie Injection [2] |
2014 | Yandex | [widgets.yandex.ru] XSS |
2014 | Yandex | [mail.yandex.ru] CSRF |
2014 | Yandex | [www.yandex.ru] Stored XSS |
2014 | Yandex | [mail.yandex.ru] CSRF |
2014 | Yandex | [api-lenta.yandex.ru] XSS |
2014 | Yandex | [market.yandex.ru] Cookie Injection |
2014 | Yandex | [market.yandex.ru] XSS |
2014 | Yandex | [m.afisha.yandex.ru] SSRF |
2014 | Yandex | [streaming.video.yandex.ru] CRLF Injection |
2014 | Yandex | [partner.news.yandex.ru] XSS |
2014 | Yandex | [advq.yandex.ru] Server-Side JavaScript Injection (RCE?) |
2014 | Yandex | [balance-slb.yandex.ru] Open Redirect |
2014 | Yandex | [wdgt.yandex.ru] Information Leakage |
2014 | Yandex | [www.yandex.com.tr] Information Leakage |
2014 | Yandex | [my.ya.ru] Open Redirect |
2014 | Yandex | [passport.yandex.ru] XSS |
2014 | Yandex | [passport.yandex.ru] Open Redirect |
2014 | Yandex | [wdgt.yandex.ru] Information Leakage |
2014 | Yandex | [www.yandex.com.tr] Information Leakage |
2014 | Yandex | [m.tv.yandex.ru] Cookie Injection |
2014 | Yandex | [m.tv.yandex.ru] CSRF |
2014 | Yandex | [tv.yandex.ru] CSRF |
2014 | Yandex | [m.pogoda.yandex.ru] DOM-Based XSS |
2014 | Yahoo | [answers.yahoo.com] *** |
2014 | Yandex | [*.yandex.ru] Cookie Injection |
2014 | Yandex | [api-yaru.yandex.ru] XSS |
2013 | Yandex | [*.yandex.ru] Open Redirect |
2013 | Yandex | [zakladki.yandex.ru] CRLF Injection |
2013 | Yandex | [oauth.yandex.ru] CRLF Injection |
2013 | Yandex | [welcome.advertising.yandex.ru] XSS |
2013 | Yandex | [m.market.yandex.ru] LFI |
2013 | Yandex | [my.ya.ru] DOM-Based XSS |
2013 | Yandex | [my.ya.ru] DOM-Based XSS |
2013 | Yandex | [company.yandex.ru] DOM Based XSS |
2013 | Google | [Google Analytics] Cookie Injection [2] |
2013 | Yahoo | [screen.yahoo.com] *** |
2013 | Yandex | [site.yandex.ru] XSS |
2013 | Yandex | [webmaster.yandex.ru] Open Redirect |
2013 | Yandex | [api.yandex.ru] Information Leakage |
2013 | Yandex | [bookmarks.yandex.ru] Information Leakage |
2013 | Yandex | [bookmarks.yandex.ru] CSRF |
2013 | Yandex | [cards.yandex.ru] Information Leakage |
2013 | Yandex | [*.yandex.ru] Open Redirect |
2013 | Yandex | [balance.yandex.ru] XSS |
2013 | Yandex | [balance.yandex.ru] XSS |
2013 | Yandex | [bayan.yandex.ru] Information Leakage |
2013 | Yandex | [ba.yandex.ru] XSS |
2013 | Yandex | [api.yandex.ru] XSS |
2013 | Yandex | [api.yandex.ru] XSS |
2013 | Yandex | [mail.yandex.ru] Open Redirect |
2013 | Yandex | [yaca.yandex.ru] XSS |
2013 | Yandex | [cards.yandex.ru] Information Leakage |
2013 | Yandex | [cards.yandex.ru] Open Redirect |
2013 | Yandex | [cards.yandex.ru] CSRF |
2013 | Yahoo | [ru.yahoo.com] *** |
2013 | Yandex | [Yandex Direct] XSS |
2013 | Yandex | [images.yandex.ru] Information Leakage |
2013 | Yandex | [market.yandex.ru] Open Redirect |
2013 | Yandex | [flv.video.yandex.ru] SWF XSS |
2013 | Yandex | [flv.video.yandex.ru] SWF XSS |
2013 | Yandex | [www.yandex.ru] Stored XSS |
2013 | Yandex | [www.yandex.ru] XSS |
2013 | Yandex | [moikrug.ru] XSS |
2013 | Bugcrowd Private | XSS |
2013 | Yandex | [site.yandex.ru] DOM Based XSS |
2013 | Yandex | [rabota.yandex.ru] DOM Based XSS |
2013 | Yandex | [*.yandex.ru] Open Redirect |
2013 | Yandex | [flv.video.yandex.ru] SWF XSS |
2013 | Yandex | [flv.video.yandex.ru] SWF XSS |
2013 | Yandex | [bar-widgets.yandex.ru] SWF XSS |
2013 | Yandex | [bs.yandex.ru] SWF XSS |
2013 | Yandex | [img.yandex.ru] SWF XSS |
2013 | Yandex | [fotki.yandex.ru] SWF XSS |
2013 | Yandex | [maps.yandex.ru] SWF XSS |
2013 | Yandex | [mail.yandex.ru] Open Redirect |
2013 | Yandex | [*.yandex.ru] Information Leakage |
2013 | Yandex | [xml.yandex.ru] Source Code Disclosure |
2013 | Yandex | [disk.yandex.ru] Open Redirect |
2013 | Yandex | [taxi.yandex.ru] Open Redirect |
2013 | Yandex | [company.yandex.ru] Information Leakage |
2013 | Yandex | [feedback.yandex.ru] Information Leakage |
2013 | Yandex | [www.yandex.ru] Open Redirect |
2013 | Yandex | [api.mobile.maps.yandex.net] CRLF Injection |
2013 | Yandex | [yaca.yandex.ru] XSS |
2013 | Yandex | [music.yandex.ru] Open Redirect |
2013 | Yandex | [mail.yandex.ru] XSS |
2013 | Bugcrowd Private | SQL Injection |
2013 | Etsy | [etsy.com] XSS |
2012 | Yandex | [money.yandex] UI redressing |
2012 | Yandex | [www.yandex.ru] XSS |
2012 | Yandex | [pass.yandex.ru] Memory disclosure |
2012 | Yandex | [api.yandex.ru] Information Leakage |
2012 | Yandex | [api.yandex.ru] Information Leakage |
2012 | Yandex | [mail.yandex.ru] XSS |
2012 | Yandex | [mail.yandex.ru] CRLF Injection. Open Redirect |
2012 | Yandex | [cards.yandex.ru] Information Leakage |
2012 | Yandex | [calendar.yandex.ru] SSRF |
2012 | Yandex | [zakladki.yandex.ru] Open Redirect |
2012 | Yandex | [pass.yandex.ru] Open Redirect |
2012 | Yandex | [*.yandex.ru] DOM Based XSS |
2012 | Yandex | [calendar.yandex.ru] Open Redirect |
2012 | Yandex | [feedback.yandex] Open Redirect |
2012 | Yandex | [www.yandex.ru] XSS |
2012 | Yandex | [mail.yandex.ru] HTTP Parameter Pollution |
2012 | Yandex | [mail.yandex.ru] Open Redirect |
2012 | Yandex | [mail.yandex.ru] CSRF |
2012 | Yandex | [pass.moikrug.ru] CRLF Injection |
2012 | Yandex | [pass.moikrug.ru] Memory disclosure |
2012 | Yandex | [pass.yandex.ru] Open Redirect |
2011 | Facebook | [facebook.com] Open Redirect |
2011 | Google | [m.youtube.com] XSS |
2011 | Google | [m.youtube.com] XSS |