Title

CVE-2017-1000101: cURL: URL globbing out of bounds read

URL

https://hackerone.com/reports/255587

Severity score

4.3

Reporter

geeknik

Bounty paid

null

Title

Multiple buffer over reads in mbox_from_parse

URL

https://hackerone.com/reports/836036

Severity score

0

Reporter

catenacyber

Bounty paid

$50

Title

ap_find_token() Buffer Overread

URL

https://hackerone.com/reports/241610

Severity score

6.5

Reporter

javier_sensepost

Bounty paid

$1,500

Title

Heap-buffer-overflow in Perl__byte_dump_string (utf8.c) could lead to memory leak

URL

https://hackerone.com/reports/480778

Severity score

7.5

Reporter

tmnt53

Bounty paid

$500

Title

При передаче в ID сообщения нулевого байта, происходит вывод какого-то буфера.

URL

https://hackerone.com/reports/255510

Severity score

7.7

Reporter

bytehope

Bounty paid

$3,500

Title

OOB read in php_strip_tags_ex

URL

https://hackerone.com/reports/778834

Severity score

6.5

Reporter

raven42

Bounty paid

$500

Title

PHP WDDX Deserialization Heap OOB Read in timelib_meridian()

URL

https://hackerone.com/reports/248659

Severity score

5.3

Reporter

xixabangm4

Bounty paid

$500

Title

Out of bounds read in libcurl's IMAP FETCH response parser

URL

https://hackerone.com/reports/278231

Severity score

null

Reporter

geeknik

Bounty paid

null

Title

CVE-2017-11367: Global buffer overflow (READ of size 4) in shoco C library

URL

https://hackerone.com/reports/250581

Severity score

null

Reporter

geeknik

Bounty paid

null

Title

CVE-2017-13009 The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_print().

URL

https://hackerone.com/reports/268806

Severity score

7.3

Reporter

geeknik

Bounty paid

$500

Title

Out of Bounds Memory Read in unserialize()

URL

https://hackerone.com/reports/261336

Severity score

null

Reporter

cy1337

Bounty paid

$500

Title

A specifically malformed MQTT Subscribe packet crashes MQTT Brokers using the mqtt-packet module for decoding

URL

https://hackerone.com/reports/541354

Severity score

7.5

Reporter

lxndr

Bounty paid

null

Title

Pre-auth buffer over-read in Dovecot NTLM implementation

URL

https://hackerone.com/reports/866597

Severity score

null

Reporter

orange

Bounty paid

$550

Title

Out-Of-Bounds Read in timelib_meridian()

URL

https://hackerone.com/reports/283644

Severity score

5.3

Reporter

xixabangm4

Bounty paid

$500

Title

Out-of-bounds read in iconv.c:_php_iconv_mime_decode() due to integer overflow

URL

https://hackerone.com/reports/593229

Severity score

8.2

Reporter

neural_x

Bounty paid

$1,500

Title

Invalid Read on exif_process_SOFn

URL

https://hackerone.com/reports/510025

Severity score

7.5

Reporter

chamal

Bounty paid

$1,500

Title

CVE-2017-13010 The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart().

URL

https://hackerone.com/reports/268807

Severity score

7.3

Reporter

geeknik

Bounty paid

$500

Title

heap buffer overflow in phar_detect_phar_fname_ext

URL

https://hackerone.com/reports/475499

Severity score

9.8

Reporter

chihuahua

Bounty paid

$1,500

Title

Buffer over read from smtp_command_parse_parameters

URL

https://hackerone.com/reports/900548

Severity score

0

Reporter

catenacyber

Bounty paid

$50

Title

CVE-2017-13038 The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp().

URL

https://hackerone.com/reports/268808

Severity score

7.3

Reporter

geeknik

Bounty paid

$500

Title

GarlicRust - heartbleed style vulnerability in major I2P C++ router implementations

URL

https://hackerone.com/reports/295740

Severity score

7.7

Reporter

aerodudrizzt

Bounty paid

null

Title

Buffer over-reads in i_stream_zlib_read

URL

https://hackerone.com/reports/832227

Severity score

0

Reporter

catenacyber

Bounty paid

$50

Title

CVE-2017-13008 The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().

URL

https://hackerone.com/reports/268805

Severity score

7.3

Reporter

geeknik

Bounty paid

$500

Title

buffer overread in base64 code of the xmlrpc module

URL

https://hackerone.com/reports/477897

Severity score

null

Reporter

hanno

Bounty paid

$500

Title

Security check failure or stack buffer overrun (crash)

URL

https://hackerone.com/reports/481335

Severity score

null

Reporter

bi7s

Bounty paid

$285.34

Title

Heap Buffer Overflow (READ: 4) in phar_parse_pharfile

URL

https://hackerone.com/reports/477344

Severity score

7.5

Reporter

cy1337

Bounty paid

$1,500

Title

Out of Bounds Memory Read in exif_scan_thumbnail

URL

https://hackerone.com/reports/675578

Severity score

8.8

Reporter

sediruoksitsero

Bounty paid

$1,500

Title

CVE-2017-12985: The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in ip6_print()

URL

https://hackerone.com/reports/268803

Severity score

7.3

Reporter

geeknik

Bounty paid

$500

Title

Out of Bounds Memory Read in exif_process_user_comment

URL

https://hackerone.com/reports/675580

Severity score

8.8

Reporter

sediruoksitsero

Bounty paid

$1,500

Title

Out of Bounds Memory Read in php_jpg_get16

URL

https://hackerone.com/reports/665330

Severity score

9.1

Reporter

sediruoksitsero

Bounty paid

$1,500

Title

Heap Buffer Overflow (READ: 1786) in exif_iif_add_value

URL

https://hackerone.com/reports/344035

Severity score

6.3

Reporter

cy1337

Bounty paid

$500

Title

Buffer out of bound read in miniupnpc xml parser

URL

https://hackerone.com/reports/340012

Severity score

null

Reporter

yukichen

Bounty paid

null

Title

CVE-2017-12986 The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().

URL

https://hackerone.com/reports/268804

Severity score

7.3

Reporter

geeknik

Bounty paid

$500

Title

apache access.log leakage via long request on https://rapida.ru/

URL

https://hackerone.com/reports/280912

Severity score

null

Reporter

tsug0d

Bounty paid

$100

Title

Buffer overread in parse_angle_addr called from message_address_parse_path

URL

https://hackerone.com/reports/836045

Severity score

0

Reporter

catenacyber

Bounty paid

$50

Title

[bl] Uninitialized memory exposure via negative .consume()

URL

https://hackerone.com/reports/966347

Severity score

7.7

Reporter

chalker

Bounty paid

null

Files

readme.md

Latest commit

History

readme.md

File metadata and controls

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter

Bounty paid

Title

URL

Severity score

Reporter