GitHub - Liger0898/Liger0898: Config files for my GitHub profile.

👋 Hi, I’m @Liger0898
👀 I’m interested in ...
🌱 I’m currently learning ...
💞️ I’m looking to collaborate on ...
📫 How to reach me ...

Hacktivity from zeyu2001

Widespread CSRF on authenticated POST endpoints https://hackerone.com/reports/1309435 Disclosed at: 2022-02-13 10:38:20 UTC+0 Created at: 2021-08-18 06:16:43 UTC+0

2 Hacktivity from ghostxsec

[CVE-2020-3452] Unauthenticated file read in Cisco ASA https://hackerone.com/reports/1415825 Disclosed at: 2022-02-14 21:13:45 UTC+0 Created at: 2021-12-02 21:06:18 UTC+0

3 Hacktivity from ghostxsec

[CVE-2020-3452] Unauthenticated file read in Cisco ASA https://hackerone.com/reports/1415825 Disclosed at: 2022-02-14 21:13:45 UTC+0 Created at: 2021-12-02 21:06:18 UTC+0

4 Bug Bounty Channel: Hacktivity from a_d_a_m

Critically Sensitive Spring Boot Endpoints Exposed https://hackerone.com/reports/1022048 Disclosed at: 2022-02-10 16:10:12 UTC+0 Created at: 2020-10-29 18:19:22 UTC+0

Hacktivity from scaramouche31

Orders full read for a staff with only `Customers` permissions. https://hackerone.com/reports/1392032 Disclosed at: 2022-02-10 19:34:50 UTC+0 Created at: 2021-11-05 05:21:34 UTC+0

Hacktivity from danishalkatiri

Password reset token leak via "Host header" on third party website https://hackerone.com/reports/1092831 Disclosed at: 2022-02-10 19:41:36 UTC+0 Created at: 2021-02-02 12:35:57 UTC+0

Hacktivity from danishalkatiri

Bypass For #997350 your-store.myshopify.com preview link is leak on third party website Via Online Store https://hackerone.com/reports/1015283 Disclosed at: 2022-02-10 19:42:54 UTC+0 Created at: 2020-10-21 13:47:53 UTC+0

Hacktivity from francisbeaudoin

[h1-2102] Information disclosure - ShopifyPlus add user displays existing Shopify ID fullname https://hackerone.com/reports/1083922 Disclosed at: 2022-02-10 19:45:42 UTC+0 Created at: 2021-01-22 02:34:04 UTC+0

Hacktivity from technorat

Information Exposure Through Directory Listing vulnerability https://hackerone.com/reports/1476709 Disclosed at: 2022-02-11 08:05:57 UTC+0 Created at: 2022-02-10 06:36:13 UTC+0

Hacktivity from trieulieuf9

Able to detect if a user is FetLife supporter although this user hides their support badge in fetlife.com/conversations/{id} JSON response https://hackerone.com/reports/1423704 Disclosed at: 2022-02-11 11:43:06 UTC+0 Created at: 2021-12-11 09:27:18 UTC+0

Hacktivity from zhirinovskiy

Discoverability by phone number/email restriction bypass https://hackerone.com/reports/1439026 Disclosed at: 2022-02-11 17:00:31 UTC+0 Created at: 2022-01-01 15:36:54 UTC+0

Hacktivity from iambouali

Blind XSS on Twitter's internal Jira panel at ████ allows exfiltration of hackers reports and other sensitive data https://hackerone.com/reports/1369674 Disclosed at: 2022-02-12 06:32:18 UTC+0 Created at: 2021-10-13 16:27:33 UTC+0

Hacktivity from hogarth45

[h1-2102] Break permissions waterfall https://hackerone.com/reports/1088159 Disclosed at: 2022-02-12 20:48:26 UTC+0 Created at: 2021-01-26 22:03:05 UTC+0

Hacktivity from zeyu2001

Widespread CSRF on authenticated POST endpoints https://hackerone.com/reports/1309435 Disclosed at: 2022-02-13 10:38:20 UTC+0 Created at: 2021-08-18 06:16:43 UTC+0

Hacktivity from ghostxsec

[CVE-2020-3452] Unauthenticated file read in Cisco ASA https://hackerone.com/reports/1415825 Disclosed at: 2022-02-14 21:13:45 UTC+0 Created at: 2021-12-02 21:06:18 UTC+0

Hacktivity from iam_a_jinchuriki

RXSS ON https://██████████ https://hackerone.com/reports/1244145 Disclosed at: 2022-02-14 21:14:48 UTC+0 Created at: 2021-06-25 12:14:22 UTC+0

Hacktivity from takester

Unauthorized access to PII leads to MASS account Takeover https://hackerone.com/reports/1061736 Disclosed at: 2022-02-14 21:15:46 UTC+0 Created at: 2020-12-18 16:52:24 UTC+0

Hacktivity from pirateducky

default ████ creds on https://████████ https://hackerone.com/reports/711662 Disclosed at: 2022-02-14 21:17:10 UTC+0 Created at: 2019-10-11 02:57:32 UTC+0

Hacktivity from fiveguyslover

(CORS) Cross-origin resource sharing misconfiguration on https://█████████ https://hackerone.com/reports/995144 Disclosed at: 2022-02-14 21:18:26 UTC+0 Created at: 2020-09-30 19:35:49 UTC+0

Hacktivity from pelegn

Reflected XSS at https://██████/██████████ via "████████" parameter https://hackerone.com/reports/1457413 Disclosed at: 2022-02-14 21:19:22 UTC+0 Created at: 2022-01-21 13:18:59 UTC+0

Hacktivity from pelegn

Reflected XSS at https://██████/██████ via "██████" parameter https://hackerone.com/reports/1457444 Disclosed at: 2022-02-14 21:20:02 UTC+0 Created at: 2022-01-21 14:34:04 UTC+0

Hacktivity from pelegn

Reflected XSS at https://██████████/████████ via "███████" parameter https://hackerone.com/reports/1457493 Disclosed at: 2022-02-14 21:20:46 UTC+0 Created at: 2022-01-21 15:40:29 UTC+0

Hacktivity from pelegn

Reflected XSS at https://█████ via "██████████" parameter https://hackerone.com/reports/1457546 Disclosed at: 2022-02-14 21:21:37 UTC+0 Created at: 2022-01-21 16:38:51 UTC+0

Hacktivity from pelegn

Reflected XSS at https://█████████ via "███" parameter https://hackerone.com/reports/1457277 Disclosed at: 2022-02-14 21:22:15 UTC+0 Created at: 2022-01-21 12:16:34 UTC+0

Hacktivity from rozerx00

XSS trigger via HTML Iframe injection in ( https://██████████ ) due to unfiltered HTML tags https://hackerone.com/reports/1200770 Disclosed at: 2022-02-14 21:23:22 UTC+0 Created at: 2021-05-18 11:08:34 UTC+0

Hacktivity from dreyand72

EC2 subdomain takeover at http://████████/ https://hackerone.com/reports/1296366 Disclosed at: 2022-02-14 21:24:17 UTC+0 Created at: 2021-08-09 16:26:45 UTC+0

Hacktivity from pll25

CUI Labelled document out in the open https://hackerone.com/reports/1436460 Disclosed at: 2022-02-14 21:26:10 UTC+0 Created at: 2021-12-27 05:05:12 UTC+0

Hacktivity from websecnl

IDOR https://hackerone.com/reports/389250 Disclosed at: 2022-02-14 21:27:05 UTC+0 Created at: 2018-08-01 14:09:04 UTC+0

Hacktivity from websecnl

Broken Authentication https://hackerone.com/reports/409237 Disclosed at: 2022-02-14 21:29:11 UTC+0 Created at: 2018-09-12 22:53:21 UTC+0

Hacktivity from shiar

Arbitrary File Read at ███ via filename parameter https://hackerone.com/reports/1436223 Disclosed at: 2022-02-14 21:35:58 UTC+0 Created at: 2021-12-26 12:05:29 UTC+0

Hacktivity from saurabhsankhwar3

Ability to Disable the Login Attempt of any Shopify Owner for 24 hrs (Zero_Click) https://hackerone.com/reports/1406495 Disclosed at: 2022-02-15 06:20:35 UTC+0 Created at: 2021-11-21 14:12:27 UTC+0

Hacktivity from ctulhu

When sharing a Deck card in conversation the metaData can be manipulated to open arbitrary URL https://hackerone.com/reports/1358977 Disclosed at: 2022-02-15 07:09:15 UTC+0 Created at: 2021-10-05 07:33:31 UTC+0

Hacktivity from qualin

Cross-origin resource sharing https://hackerone.com/reports/1478449 Disclosed at: 2022-02-15 10:37:43 UTC+0 Created at: 2022-02-11 13:11:26 UTC+0

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
README.md		README.md
directory_listning		directory_listning

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

About

Releases

Packages

Liger0898/Liger0898

Folders and files

Latest commit

History

Repository files navigation

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Packages