Remote Code Execution through Deserialization Attack in OwnBackup app.
https://hackerone.com/reports/562335
null
q3rv0
null
Deserialization of Untrusted Data in www/delivery/dxmlrpc.php
https://hackerone.com/reports/542670
10
mbeccati
null
Remote Code Execution (RCE) in a Sony Pictures WebSystem
https://hackerone.com/reports/330028
10
joaomatosf
null
2 vulnerabilities of arbitrary code in ████████ - CVE-2017-5929
https://hackerone.com/reports/272979
null
ruffdraft
null
Vanilla Forums Gdn_Format unserialize() Remote Code Execution Vulnerability
https://hackerone.com/reports/407552
9.1
mr_me
$600
Remote code execution by hijacking an unclaimed S3 bucket in Rocket.Chat's installation script.
https://hackerone.com/reports/399166
null
edoverflow
null
Authenticated Code Execution through Phar deserialization in CSV Importer as Shop manager in WooCommerce
https://hackerone.com/reports/403083
null
simonscannell
$350
Unsafe deserialization in Libera Pay allows to escalate a SQL injection to Remote Command Execution
https://hackerone.com/reports/361341
null
kapytein
null
Deserialization of Untrusted Data in www/delivery/adxmlrpc.php
https://hackerone.com/reports/512076
9.1
mbeccati
null
Remote Code Execution via CVE-2019-18935
https://hackerone.com/reports/913695
null
un4gi
null
Attacker can add arbitrary data to the blockchain without paying gas
https://hackerone.com/reports/396954
9.3
ahook
$10,000
Remote Code Execution via Insecure Deserialization in Telerik UI
https://hackerone.com/reports/838196
null
sw33tlie
null
CTF Writeup flag{cha1n1ng_bugs_f0r_fun_4nd_pr0f1t?_or_rep0rt_an_LF1}
https://hackerone.com/reports/415275
null
den1al
null
Remote Code Execution (RCE) in a Sony WebSystem
https://hackerone.com/reports/329572
10
joaomatosf
null
Unrestricted File Upload in Chat Window
https://hackerone.com/reports/826288
null
ravi2443
null
Untrusted strings that are cache fetched with raw option are automatically marshal loaded
https://hackerone.com/reports/413388
null
dylan-ts
null
Unsafe deserialization in Nexus Repository helm plugin
https://hackerone.com/reports/917843
null
c0d3p1ut0s
null
Remote attacker can impersonate Social users via ActivityPub API
https://hackerone.com/reports/461308
null
tomk
$50
Remote code execution on rubygems.org
https://hackerone.com/reports/274990
null
max
$1,500
Remote Code Execution (RCE) in a DoD website
https://hackerone.com/reports/329399
null
joaomatosf
null
Vanilla Forums Xenforo password splitHash Unserialize Remote Code Execution Vulnerability
https://hackerone.com/reports/410212
8
mr_me
$300
Password reset Token not expiring
https://hackerone.com/reports/220185
null
peeper35
null
Vanilla Forums ImportController index file_exists Unserialize Remote Code Execution Vulnerability
https://hackerone.com/reports/410237
9.1
mr_me
$600
Remote Code Execution (RCE) in a DoD website
https://hackerone.com/reports/329400
null
joaomatosf
null
Vanilla Forums domGetImages getimagesize Unserialize Remote Code Execution Vulnerability (critical)
https://hackerone.com/reports/410882
9.8
mr_me
$600
Remote Code Execution (RCE) in a DoD website
https://hackerone.com/reports/329376
null
joaomatosf
null
Remote Code Execution (RCE) in a DoD website
https://hackerone.com/reports/329397
null
joaomatosf
null