Grammarly


reports in last 90 days

10

disclosed resolved issues

1

disclosed informative issues

0

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

Medium Previously created sessions continue being valid after MFA activation

Improper Access Control - Generic brdoors3 Time to triage: 0 Days and 2 hours


Time to close: 9 Days and 21 hours
Resolved

Low Can register any mobile number in MFA without current code.

Improper Access Control - Generic chackmate Time to triage: 0 Days and 2 hours


Time to close: 7 Days and 0 hours
Resolved

Medium “email” MFA mode allows bypassing MFA from victim’s device when the device trust is not expired

Improper Authentication - Generic linkworld Time to triage: 4 Days and 19 hours


Time to close: 2 Days and 16 hours
Resolved

Critical Handling of `tracking` command allows making arbitrary blind requests with user's cookies from Grammarly Extension's origin

None supplied metnew Time to triage: 6 Days and 8 hours


Time to close: 0 Days and 23 hours
Resolved

High `socket` command allows sending data over WebSockets to arbitrary origins from Grammarly Extension

None supplied metnew Time to triage: 1 Days and 6 hours


Time to close: 20 Days and 22 hours
Resolved

Medium Reflected Cross Site Scripting (XSS)

Cross-site Scripting (XSS) - Reflected sarmadkhan Issue was not triaged


Time to close: 0 Days and 16 hours
Informative

Low Emails from Grammarly missing sanitization(lack of validation?) -> HTML injection in emails

Violation of Secure Design Principles metnew Issue was not triaged


Time to close: 3 Days and 9 hours
Duplicate

Low "More on Wikipedia" link disclose "Referrer" and leak `window.opener` reference for arbitrary websites

Violation of Secure Design Principles metnew Time to triage: 4 Days and 12 hours


Time to close: 41 Days and 6 hours
Resolved

Medium `open-url` command allows opening unlimited number of tabs pointing to arbitrary URLs

None supplied metnew Time to triage: 6 Days and 11 hours


Time to close: 7 Days and 23 hours
Resolved

Low DOM based CSS Injection on grammarly.com

Cross-site Scripting (XSS) - DOM gamer7112 Time to triage: 0 Days and 4 hours


Time to close: 53 Days and 7 hours
Resolved

Low Grammarly Keyboard for Android <4.1 leaks user input through logs (except for sensitive input fields)

Information Exposure Through Debug Information lukasstefanko Time to triage: 2 Days and 15 hours


Time to close: 1 Days and 6 hours
Resolved

High Employee's GitHub Token Found In Travis CI Build Logs

Information Disclosure karimpwnz Time to triage: 0 Days and 6 hours


Time to close: 10 Days and 11 hours
Resolved