Semmle


reports in last 90 days

3

disclosed resolved issues

2

disclosed informative issues

4

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

High Privilege escalation in workers container

Privilege Escalation testanull Time to triage: 0 Days and 12 hours


Time to close: 0 Days and 5 hours
Resolved

Medium Unprotected Api EndPoints

Violation of Secure Design Principles kaushalag29 Issue was not triaged


Time to close: 0 Days and 5 hours
Not-applicable

Low All Burp Suite Scan report

Security Through Obscurity punitcingh Issue was not triaged


Time to close: 0 Days and 0 hours
Not-applicable

Medium the login blocking mechanism does not work correctly

Brute Force 0ufzayed Issue was not triaged


Time to close: 0 Days and 8 hours
Not-applicable

Medium Authenticated Cross-Site-Request-Forgery

Cross-Site Request Forgery (CSRF) drspitfire Issue was not triaged


Time to close: 0 Days and 19 hours
Not-applicable

Medium CSP : Inline scripts can be inserted

Cross-site Scripting (XSS) - Generic darkdude Issue was not triaged


Time to close: 0 Days and 2 hours
Informative

No rating Email Not Completely Deleted after Deleting an account

Privacy Violation 0xspade Issue was not triaged


Time to close: 15 Days and 4 hours
Informative

Medium Email addresses exposed in getPersonBySlug API

None supplied haxta4ok00 Time to triage: 0 Days and 4 hours


Time to close: 0 Days and 3 hours
Resolved

High DOMXSS in redirect param

Cross-site Scripting (XSS) - DOM flamezzz Time to triage: 0 Days and 4 hours


Time to close: 0 Days and 20 hours
Resolved