Skip to content
View Liger0898's full-sized avatar
0 followers · 2 following

Block or report Liger0898

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Liger0898/README.md
  • πŸ‘‹ Hi, I’m @Liger0898
  • πŸ‘€ I’m interested in ...
  • 🌱 I’m currently learning ...
  • πŸ’žοΈ I’m looking to collaborate on ...
  • πŸ“« How to reach me ...

Hacktivity from zeyu2001

Widespread CSRF on authenticated POST endpoints https://hackerone.com/reports/1309435 Disclosed at: 2022-02-13 10:38:20 UTC+0 Created at: 2021-08-18 06:16:43 UTC+0

2 Hacktivity from ghostxsec

[CVE-2020-3452] Unauthenticated file read in Cisco ASA https://hackerone.com/reports/1415825 Disclosed at: 2022-02-14 21:13:45 UTC+0 Created at: 2021-12-02 21:06:18 UTC+0

3 Hacktivity from ghostxsec

[CVE-2020-3452] Unauthenticated file read in Cisco ASA https://hackerone.com/reports/1415825 Disclosed at: 2022-02-14 21:13:45 UTC+0 Created at: 2021-12-02 21:06:18 UTC+0

4 Bug Bounty Channel: Hacktivity from a_d_a_m

Critically Sensitive Spring Boot Endpoints Exposed https://hackerone.com/reports/1022048 Disclosed at: 2022-02-10 16:10:12 UTC+0 Created at: 2020-10-29 18:19:22 UTC+0

Hacktivity from scaramouche31

Orders full read for a staff with only `Customers` permissions. https://hackerone.com/reports/1392032 Disclosed at: 2022-02-10 19:34:50 UTC+0 Created at: 2021-11-05 05:21:34 UTC+0

Hacktivity from danishalkatiri

Password reset token leak via "Host header" on third party website https://hackerone.com/reports/1092831 Disclosed at: 2022-02-10 19:41:36 UTC+0 Created at: 2021-02-02 12:35:57 UTC+0

Hacktivity from danishalkatiri

Bypass For #997350 your-store.myshopify.com preview link is leak on third party website Via Online Store https://hackerone.com/reports/1015283 Disclosed at: 2022-02-10 19:42:54 UTC+0 Created at: 2020-10-21 13:47:53 UTC+0

Hacktivity from francisbeaudoin

[h1-2102] Information disclosure - ShopifyPlus add user displays existing Shopify ID fullname https://hackerone.com/reports/1083922 Disclosed at: 2022-02-10 19:45:42 UTC+0 Created at: 2021-01-22 02:34:04 UTC+0

Hacktivity from technorat

Information Exposure Through Directory Listing vulnerability https://hackerone.com/reports/1476709 Disclosed at: 2022-02-11 08:05:57 UTC+0 Created at: 2022-02-10 06:36:13 UTC+0

Hacktivity from trieulieuf9

Able to detect if a user is FetLife supporter although this user hides their support badge in fetlife.com/conversations/{id} JSON response https://hackerone.com/reports/1423704 Disclosed at: 2022-02-11 11:43:06 UTC+0 Created at: 2021-12-11 09:27:18 UTC+0

Hacktivity from zhirinovskiy

Discoverability by phone number/email restriction bypass https://hackerone.com/reports/1439026 Disclosed at: 2022-02-11 17:00:31 UTC+0 Created at: 2022-01-01 15:36:54 UTC+0

Hacktivity from iambouali

Blind XSS on Twitter's internal Jira panel at β–ˆβ–ˆβ–ˆβ–ˆ allows exfiltration of hackers reports and other sensitive data https://hackerone.com/reports/1369674 Disclosed at: 2022-02-12 06:32:18 UTC+0 Created at: 2021-10-13 16:27:33 UTC+0

Hacktivity from hogarth45

[h1-2102] Break permissions waterfall https://hackerone.com/reports/1088159 Disclosed at: 2022-02-12 20:48:26 UTC+0 Created at: 2021-01-26 22:03:05 UTC+0

Hacktivity from zeyu2001

Widespread CSRF on authenticated POST endpoints https://hackerone.com/reports/1309435 Disclosed at: 2022-02-13 10:38:20 UTC+0 Created at: 2021-08-18 06:16:43 UTC+0

Hacktivity from ghostxsec

[CVE-2020-3452] Unauthenticated file read in Cisco ASA https://hackerone.com/reports/1415825 Disclosed at: 2022-02-14 21:13:45 UTC+0 Created at: 2021-12-02 21:06:18 UTC+0

Hacktivity from iam_a_jinchuriki

RXSS ON https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ https://hackerone.com/reports/1244145 Disclosed at: 2022-02-14 21:14:48 UTC+0 Created at: 2021-06-25 12:14:22 UTC+0

Hacktivity from takester

Unauthorized access to PII leads to MASS account Takeover https://hackerone.com/reports/1061736 Disclosed at: 2022-02-14 21:15:46 UTC+0 Created at: 2020-12-18 16:52:24 UTC+0

Hacktivity from pirateducky

default β–ˆβ–ˆβ–ˆβ–ˆ creds on https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ https://hackerone.com/reports/711662 Disclosed at: 2022-02-14 21:17:10 UTC+0 Created at: 2019-10-11 02:57:32 UTC+0

Hacktivity from fiveguyslover

(CORS) Cross-origin resource sharing misconfiguration on https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ https://hackerone.com/reports/995144 Disclosed at: 2022-02-14 21:18:26 UTC+0 Created at: 2020-09-30 19:35:49 UTC+0

Hacktivity from pelegn

Reflected XSS at https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ/β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ via "β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ" parameter https://hackerone.com/reports/1457413 Disclosed at: 2022-02-14 21:19:22 UTC+0 Created at: 2022-01-21 13:18:59 UTC+0

Hacktivity from pelegn

Reflected XSS at https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ/β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ via "β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ" parameter https://hackerone.com/reports/1457444 Disclosed at: 2022-02-14 21:20:02 UTC+0 Created at: 2022-01-21 14:34:04 UTC+0

Hacktivity from pelegn

Reflected XSS at https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ/β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ via "β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ" parameter https://hackerone.com/reports/1457493 Disclosed at: 2022-02-14 21:20:46 UTC+0 Created at: 2022-01-21 15:40:29 UTC+0

Hacktivity from pelegn

Reflected XSS at https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆ via "β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ" parameter https://hackerone.com/reports/1457546 Disclosed at: 2022-02-14 21:21:37 UTC+0 Created at: 2022-01-21 16:38:51 UTC+0

Hacktivity from pelegn

Reflected XSS at https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ via "β–ˆβ–ˆβ–ˆ" parameter https://hackerone.com/reports/1457277 Disclosed at: 2022-02-14 21:22:15 UTC+0 Created at: 2022-01-21 12:16:34 UTC+0

Hacktivity from rozerx00

XSS trigger via HTML Iframe injection in ( https://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ ) due to unfiltered HTML tags https://hackerone.com/reports/1200770 Disclosed at: 2022-02-14 21:23:22 UTC+0 Created at: 2021-05-18 11:08:34 UTC+0

Hacktivity from dreyand72

EC2 subdomain takeover at http://β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆ/ https://hackerone.com/reports/1296366 Disclosed at: 2022-02-14 21:24:17 UTC+0 Created at: 2021-08-09 16:26:45 UTC+0

Hacktivity from pll25

CUI Labelled document out in the open https://hackerone.com/reports/1436460 Disclosed at: 2022-02-14 21:26:10 UTC+0 Created at: 2021-12-27 05:05:12 UTC+0

Hacktivity from websecnl

IDOR https://hackerone.com/reports/389250 Disclosed at: 2022-02-14 21:27:05 UTC+0 Created at: 2018-08-01 14:09:04 UTC+0

Hacktivity from websecnl

Broken Authentication https://hackerone.com/reports/409237 Disclosed at: 2022-02-14 21:29:11 UTC+0 Created at: 2018-09-12 22:53:21 UTC+0

Hacktivity from shiar

Arbitrary File Read at β–ˆβ–ˆβ–ˆ via filename parameter https://hackerone.com/reports/1436223 Disclosed at: 2022-02-14 21:35:58 UTC+0 Created at: 2021-12-26 12:05:29 UTC+0

Hacktivity from saurabhsankhwar3

Ability to Disable the Login Attempt of any Shopify Owner for 24 hrs (Zero_Click) https://hackerone.com/reports/1406495 Disclosed at: 2022-02-15 06:20:35 UTC+0 Created at: 2021-11-21 14:12:27 UTC+0

Hacktivity from ctulhu

When sharing a Deck card in conversation the metaData can be manipulated to open arbitrary URL https://hackerone.com/reports/1358977 Disclosed at: 2022-02-15 07:09:15 UTC+0 Created at: 2021-10-05 07:33:31 UTC+0

Hacktivity from qualin

Cross-origin resource sharing https://hackerone.com/reports/1478449 Disclosed at: 2022-02-15 10:37:43 UTC+0 Created at: 2022-02-11 13:11:26 UTC+0

Popular repositories Loading

  1. Liger0898 Liger0898 Public

    Config files for my GitHub profile.

  2. krushna krushna Public

  3. DNS-BailiWicked-Host-Attack DNS-BailiWicked-Host-Attack Public