Password Reset page Session Fixation
https://hackerone.com/reports/255020
null
ashishag29
null
Affiliates - Session Fixation
https://hackerone.com/reports/737058
null
jair
null
H1514 Session Fixation on multiple shopify-built apps on *.shopifycloud.com and *.shopifyapps.com
https://hackerone.com/reports/423136
null
filedescriptor
$5,000
Session fixation in password protected public download.
https://hackerone.com/reports/237184
3.1
frankspierings
$50
Session Fixation
https://hackerone.com/reports/135797
null
eboda
$50
Pending MFA logins aren't immediatly expired after a password change
https://hackerone.com/reports/743518
null
ant_pyne
$50
account takeover https://idea.qiwi.com/
https://hackerone.com/reports/464426
null
circuit
$300
Intercom chat session information persists after logout
https://hackerone.com/reports/249798
2.5
khizer47
$20
The auth token does not expire on logging out and even after logging out all sessions
https://hackerone.com/reports/247721
null
whitehattushu
$100