Reports in informatica program: S.No Title Bounty 1 [oneclickdrsfdc-test.informatica.com] Tomcat Example Scripts Exposed Unauthenticated $0.0 2 [rev-app.informatica.com] - XXE $0.0 3 [now.informatica.com] Reflective Xss $0.0 4 [informatica.com] Blind SQL Injection $0.0 5 [community.informatica.com] - CSRF in Private Messages allows to move user's messages to Trash $0.0 6 [kb.informatica.com] Unauthenticated emails and HTML injection in email messages $0.0 7 [product360.informatica.com] Unauthenticated Apache Tomcat 8 Installation $0.0 8 [rev-app.informatica.com] - XXE via SAML $0.0 9 [marketplace.informatica.com] - XXE $0.0 10 [marketplace.informatica.com] - XXE $0.0 11 [now.informatica.com] Reflective XSS $0.0 12 [afocusp.informatica.com] Sql injection afocusp.informatica.com:37777 $0.0 13 [wave.informatica.com]- Subdomain missconfiguration $0.0 14 [ipm.informatica.com] Sql injection Oracle $0.0 15 [marketplace.informatica.com] Persistent XSS through document title $0.0 16 [uk.informatica.com] XSS on uk.informatica..com $0.0 17 [careers.informatica.com] Reflected Cross Site Scripting to XSS Shell Possible $0.0 18 [careers.informatica.com] XSS on "isJTN" $0.0 19 [app.informaticaondemand.com] XXE $0.0 20 Stored XSS via Discussion Title and Send as Email attribute in [marketplace.informatica.com] $0.0 21 [kb.informatica.com] Stored XSS $0.0 22 [ipm.informatica.com]- Broken Authentication $0.0 23 [marketplace.informatica.com] Profile stored XSS $0.0 24 [marketplace.informatica.com]- Stored XSS on Image title and Edit Property $0.0 25 [parc.informatica.com] Reflected Cross Site Scripting and Open Redirect $0.0 26 [careers.informatica.com] Cross Site Script Vulnerability on informatica $0.0 27 XXE in upload file feature $0.0 28 [network.informatica.com] The login form XSS via the referer value $0.0 29 [marketplace.informatica.com] Search XSS $0.0 30 [kb.informatica.com] DOM based XSS in the bindBreadCrumb function $0.0 31 [alpha.informatica.com] Expensive DOMXSS $0.0 32 Store XSS on Informatica University via transcript (informatica.csod.com) $0.0 33 [informatica.com]- Cross Site scripting $0.0 34 [marketplace.informatica.com] User email disclosure $0.0 35 Unrestricted file upload - cloudacademy.informatica.com $0.0 36 [marketplace.informatica.com] - Stored XSS $0.0 37 [marketplace.informatica.com]-Reflected XSS $0.0 38 [marketplace.informatica.com] - Sensitive Data Exposure $0.0 39 [marketplace.informatica.com] - Template Injection $0.0 40 [http://www.informatica.com]- info disclosure $0.0 41 XXE at Informatica sub-domain $0.0 42 SSRF on infawiki.informatica.com and infawikitest.informatica.com $0.0 43 [informatica.com]- Information Disclosure $0.0 44 Reflected XSS $0.0 45 Cisco RCE $0.0 46 [https://life.informatica.com] - information disclose $0.0 47 Public Github Repo Leaking Internal Credentials Leading To DiscoveryIQ Docker Access $0.0 48 accounts.informatica.com - RCE due to exposed Groovy console $0.0 49 [kb.informatica.com] Dom Based xss $0.0 50 RXSS in http://procurement-businesscatalog.informatica.com $0.0 51 XXE through injection of a payload in the XMP metadata of a JPEG file $0.0 52 Cross-site Scripting (XSS) - DOM - iqcard.informatica.com $0.0 53 ..; bypass leading to tomcat scripts [Unauthenticated] $0.0 54 Blind SQL injection at tsftp.informatica.com $0.0 55 loing in to marketplace panel on enablement.informatica.com $0.0 56 Html injection on ██████.informatica.com via search.html?q=1 $0.0 57 Cross site scripting $0.0 58 F5 BIG-IP Cookie potentially reveal BigIP pool name, backend's IP address and port, routed domain. $0.0 59 Improper Sanitization leads to XSS Fire on admin panel $0.0 60 CVE-2021-40870 in [███] $0.0 61 Reflected Cross-Site Scripting/HTML Injection $0.0 62 [doc.rt.informaticacloud.com] Arbitrary File Reading via Double URL Encode $0.0 63 [doc.rt.informaticacloud.com] Reflected XSS via Stack Strace $0.0 64 jira discloser information $0.0 65 [mysupport.informatica.com] - reflected XSS $0.0