Tomtom


reports in last 90 days

4

disclosed resolved issues

0

disclosed informative issues

0

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

High Anonymous user login to Nexus Repository Manager

Improper Access Control - Generic sbakhour Time to triage: 0 Days and 5 hours


Time to close: 28 Days and 3 hours
Resolved

Medium Listing of Amazon S3 Bucket accessible to any amazon authenticated user (vector-maps-e457472599)

Information Disclosure zer0ttl Issue was not triaged


Time to close: 9 Days and 5 hours
Resolved

Medium Apache mod_status /server-status Information Disclosure

Information Exposure Through Debug Information vijay922 Time to triage: 0 Days and 9 hours


Time to close: 42 Days and 14 hours
Resolved

No rating CSRF allows attacker to manage customer's shopping cart.

Cross-Site Request Forgery (CSRF) abzi Issue was not triaged


Time to close: 0 Days and 14 hours
Duplicate

Medium Reflected XSS on www.tomtom.com

Cross-site Scripting (XSS) - Reflected schopathx Issue was not triaged


Time to close: 0 Days and 0 hours
Duplicate

High Exposed Git Repo at http://betaforum.tomtom.com/.git/{subfolders}

Information Disclosure daniel_v Time to triage: 0 Days and 8 hours


Time to close: 0 Days and 14 hours
Resolved

Medium Reflected Cross Site Scripting vuln in tomtom.com

Cross-site Scripting (XSS) - Reflected omnicient Issue was not triaged


Time to close: 0 Days and 1 hours
Duplicate

Medium XSS Reflect

Cross-site Scripting (XSS) - Reflected z3xddd Issue was not triaged


Time to close: 0 Days and 1 hours
Duplicate