Informatica


reports in last 90 days

51

disclosed resolved issues

1

disclosed informative issues

0

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

Critical Public Github Repo Leaking Internal Credentials Leading To DiscoveryIQ Docker Access

Information Disclosure vinothkumar Time to triage: 0 Days and 6 hours


Time to close: 0 Days and 0 hours
Resolved

Critical accounts.informatica.com - RCE due to exposed Groovy console

Code Injection 0ang3el Issue was not triaged


Time to close: 0 Days and 4 hours
Resolved

Medium [kb.informatica.com] Dom Based xss

Cross-site Scripting (XSS) - Generic e3xpl0it Time to triage: 1 Days and 0 hours


Time to close: 202 Days and 11 hours
Resolved

High [https://life.informatica.com] - information disclose

Information Disclosure modam3r5 Issue was not triaged


Time to close: 0 Days and 0 hours
Resolved

Critical Cisco RCE

Command Injection - Generic neolead Time to triage: 0 Days and 21 hours


Time to close: 0 Days and 0 hours
Resolved

Medium Reflected XSS

Cross-site Scripting (XSS) - Generic panckazzz Time to triage: 22 Days and 22 hours


Time to close: 340 Days and 0 hours
Resolved

Medium [informatica.com]- Information Disclosure

Information Disclosure irotem2 Time to triage: 1 Days and 15 hours


Time to close: 416 Days and 21 hours
Resolved

Medium SSRF on infawiki.informatica.com and infawikitest.informatica.com

Server-Side Request Forgery (SSRF) 0ang3el Time to triage: 15 Days and 12 hours


Time to close: 134 Days and 0 hours
Resolved

High XXE at Informatica sub-domain

Command Injection - Generic strukt Time to triage: 1 Days and 9 hours


Time to close: 321 Days and 14 hours
Resolved

Critical [http://www.informatica.com]- info disclosure

Information Disclosure modam3r5 Issue was not triaged


Time to close: 3 Days and 22 hours
Resolved

Critical [marketplace.informatica.com] - Template Injection

Code Injection samengmg Time to triage: 1 Days and 0 hours


Time to close: 9 Days and 6 hours
Resolved

High [marketplace.informatica.com] - Stored XSS

Cross-site Scripting (XSS) - Stored jubabaghdad Time to triage: 3 Days and 10 hours


Time to close: 57 Days and 10 hours
Resolved

Medium [marketplace.informatica.com]-Reflected XSS

Cross-site Scripting (XSS) - Reflected 0ways Time to triage: 0 Days and 15 hours


Time to close: 97 Days and 7 hours
Resolved

Low [marketplace.informatica.com] - Sensitive Data Exposure

Privacy Violation shogunlab Time to triage: 10 Days and 16 hours


Time to close: 72 Days and 18 hours
Resolved

Medium Unrestricted file upload - cloudacademy.informatica.com

None supplied 0ways Time to triage: 0 Days and 21 hours


Time to close: 128 Days and 0 hours
Resolved

Low [marketplace.informatica.com] User email disclosure

Privacy Violation shogunlab Time to triage: 9 Days and 21 hours


Time to close: 158 Days and 3 hours
Resolved

High [informatica.com]- Cross Site scripting

Cross-site Scripting (XSS) - Generic irotem2 Time to triage: 1 Days and 15 hours


Time to close: 237 Days and 22 hours
Resolved

High Store XSS on Informatica University via transcript (informatica.csod.com)

Cross-site Scripting (XSS) - Generic alfredsaonoy Time to triage: 38 Days and 16 hours


Time to close: 8 Days and 5 hours
Resolved

Medium [alpha.informatica.com] Expensive DOMXSS

Cross-site Scripting (XSS) - Generic albinowax Time to triage: 6 Days and 8 hours


Time to close: 171 Days and 15 hours
Resolved

High [kb.informatica.com] DOM based XSS in the bindBreadCrumb function

Cross-site Scripting (XSS) - Generic s_p_q_r Time to triage: 13 Days and 9 hours


Time to close: 124 Days and 4 hours
Resolved

High [network.informatica.com] The login form XSS via the referer value

Cross-site Scripting (XSS) - Generic s_p_q_r Time to triage: 12 Days and 21 hours


Time to close: 88 Days and 16 hours
Resolved

High [marketplace.informatica.com] Search XSS

Cross-site Scripting (XSS) - Generic s_p_q_r Time to triage: 6 Days and 11 hours


Time to close: 53 Days and 6 hours
Resolved

High [careers.informatica.com] Cross Site Script Vulnerability on informatica

Cross-site Scripting (XSS) - Generic gorkha Time to triage: 358 Days and 6 hours


Time to close: 36 Days and 23 hours
Resolved

High XXE in upload file feature

Denial of Service yarbabin Time to triage: 6 Days and 7 hours


Time to close: 455 Days and 4 hours
Resolved

Medium [parc.informatica.com] Reflected Cross Site Scripting and Open Redirect

Cross-site Scripting (XSS) - Generic bogdantcaciuc Time to triage: 0 Days and 23 hours


Time to close: 143 Days and 8 hours
Resolved