Liberapay


reports in last 90 days

8

disclosed resolved issues

16

disclosed informative issues

8

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

None Session Cookie without HttpOnly and secure flag set

Violation of Secure Design Principles doug18 Issue was not triaged


Time to close: 0 Days and 13 hours
Informative

No rating Unsafe deserialization in Libera Pay allows to escalate a SQL injection to Remote Command Execution

Deserialization of Untrusted Data kapytein Time to triage: 0 Days and 0 hours


Time to close: 0 Days and 22 hours
Resolved

Low Import of repositories from GitHub is tied to username instead of immutable ID

Improper Access Control - Generic emitrani Time to triage: 0 Days and 13 hours


Time to close: 1 Days and 1 hours
Resolved

High Publicly editable GitHub wikis

Improper Access Control - Generic strukt Issue was not triaged


Time to close: 0 Days and 0 hours
Not-applicable

Low User Enumeration

None supplied gouveaheitor Issue was not triaged


Time to close: 0 Days and 12 hours
Informative

None Broken Authentication and session management OWASP A2

Improper Authentication - Generic sameerphad72 Issue was not triaged


Time to close: 0 Days and 2 hours
Not-applicable

None Improper Data Validation / Unvalidated Input

Classic Buffer Overflow cardangi Issue was not triaged


Time to close: 0 Days and 3 hours
Not-applicable

No rating Returning back from the browser after logging off will disclose some information

Business Logic Errors zir0x Issue was not triaged


Time to close: 0 Days and 2 hours
Not-applicable

None Punny code Detection Parsing should be implemented on Markdown

Business Logic Errors kunal94 Issue was not triaged


Time to close: 0 Days and 4 hours
Informative

None A single user can subscribe a community multiple times

Business Logic Errors mks11nov Issue was not triaged


Time to close: 1 Days and 5 hours
Informative

None Buffer overflow

Classic Buffer Overflow kaushalag29 Issue was not triaged


Time to close: 0 Days and 8 hours
Not-applicable

None Cross site scripting (content-sniffing)

Cross-site Scripting (XSS) - DOM said778 Issue was not triaged


Time to close: 0 Days and 4 hours
Not-applicable

None No Data Validation, No Captcha, No Filters...

Business Logic Errors cardangi Issue was not triaged


Time to close: 0 Days and 3 hours
Informative

None Able to View other users income history

Insecure Direct Object Reference (IDOR) amaljacob Issue was not triaged


Time to close: 0 Days and 0 hours
Informative

None Liberapay Non Verified Account Takeover with signup feature

Improper Authentication - Generic babayaga_ Issue was not triaged


Time to close: 0 Days and 12 hours
Informative

None Anyone can register organization legal type as "Soletrader"

Resource Injection 4bg0p Issue was not triaged


Time to close: 0 Days and 17 hours
Resolved

No rating Same CSRF token is being used for deleting other platform login’s within an account and across other liberapay Account’s

Cross-Site Request Forgery (CSRF) mah1ndra Time to triage: 0 Days and 0 hours


Time to close: 0 Days and 2 hours
Informative

No rating The csrf token remains same after user logs in

Violation of Secure Design Principles d4w Issue was not triaged


Time to close: 0 Days and 11 hours
Duplicate

None Insecure Account Deletion

Improper Authentication - Generic hack2684 Issue was not triaged


Time to close: 0 Days and 2 hours
Informative

None CSRF ON EDITING NAME (OPTIONAL)

Cross-Site Request Forgery (CSRF) rootbakar Issue was not triaged


Time to close: 0 Days and 12 hours
Informative

None Phishing by Navigating Browser Tabs

None supplied 4w3 Issue was not triaged


Time to close: 0 Days and 0 hours
Informative

None Current CSP Policy chained with HTML Injection can lead to Data Exfiltration

Violation of Secure Design Principles nthack Issue was not triaged


Time to close: 0 Days and 0 hours
Informative

None csrf token did not changed after login/logout many times

Cross-Site Request Forgery (CSRF) cryptographer Issue was not triaged


Time to close: 0 Days and 0 hours
Informative

No rating CSRF token manipulation in every possible form submits. NO server side Validation

Cross-Site Request Forgery (CSRF) mah1ndra Issue was not triaged


Time to close: 0 Days and 18 hours
Informative

No rating Unsafe deserialization in Libera Pay allows to escalate a SQL injection to Remote Command Execution

Deserialization of Untrusted Data kapytein Time to triage: 0 Days and 0 hours


Time to close: 0 Days and 22 hours
Resolved