Lyst


reports in last 90 days

5

disclosed resolved issues

0

disclosed informative issues

0

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

Low Bypassing one-time checkout router page (revealing payment information)

Information Disclosure tolo7010 Time to triage: 11 Days and 18 hours


Time to close: 0 Days and 0 hours
Resolved

Low SSRF at iris.lystit.com

Server-Side Request Forgery (SSRF) tripwire Time to triage: 5 Days and 6 hours


Time to close: 19 Days and 12 hours
Resolved

Medium CSRF - Adding unlimited number of saved items via GET request

Cross-Site Request Forgery (CSRF) inhibitor181 Time to triage: 2 Days and 3 hours


Time to close: 90 Days and 15 hours
Resolved

No rating Site configured improperly at subdomain of lyst.co.uk

Violation of Secure Design Principles mr_edwards Issue was not triaged


Time to close: 3 Days and 15 hours
Resolved

Low Mixed Active content issue on https://www.lyst.com

Violation of Secure Design Principles mrr3boot Time to triage: 3 Days and 19 hours


Time to close: 0 Days and 1 hours
Resolved