Sotwe logo Sotwe logo
h1Disclosed's profile banner image
h1Disclosed's profile image

H1 Disclosed - Public Disclosures

@h1Disclosed

User friendly unofficial HackerOne public disclosures, keeps you updated about the recently disclosed bugs. Made With ♥ By Hackers For Hackers. - @rohsec
127.0.0.1
Joined September 2022
2 Following
10.2K Followers
2.7K Posts
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Connection reuse ignores haproxyprotocol and HAPROXY_CLIENT_IP settings, allowing PROXY context t... 👨🏻‍💻 7omoo ➟ curl ⬜ None 💰 None 🔗 https://t.co/OpwX3sbdra #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Connection reuse ignores haproxyprotocol and HAPROXY_CLIENT_IP settings, allowing PROXY context t... 👨🏻‍💻 7omoo ➟ curl ⬜ None 💰 None 🔗 https://t.co/OpwX3sbdra #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/A4aOrM5lCC
0
1
0
1
487
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Schannel custom-CA path skips Extended Key Usage enforcement 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/gaaemyXcte #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Schannel custom-CA path skips Extended Key Usage enforcement 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/gaaemyXcte #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/FFtpKV92jR
0
3
0
2
448
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ HTTP/3 paused transfer buffers incoming data without bound up to ~1 GiB 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/iaJ2TG736B #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ HTTP/3 paused transfer buffers incoming data without bound up to ~1 GiB 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/iaJ2TG736B #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/PGl74ALPMs
0
1
0
0
355
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Cross-repository IDOR in `/settings/security_analysis/bypass_reviewers` allows unauthorized deleg... 👨🏻‍💻 @ahacker1_h1 ➟ GitHub 🟧 Medium 💰 None 🔗 https://t.co/XEw5SjzbzP #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Cross-repository IDOR in `/settings/security_analysis/bypass_reviewers` allows unauthorized deleg... 👨🏻‍💻 @ahacker1_h1 ➟ GitHub 🟧 Medium 💰 None 🔗 https://t.co/XEw5SjzbzP #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/Tt3vuEyRNK
0
20
0
3
926

Who to follow

Hammad7361's profile image
Hammad 🇵🇰🇵🇸
@Hammad7361
Bug bounty hunter on @Bugcrowd | https://t.co/ZzgPZQzdTp
3nc0d3dGuY's profile image
encodedguy - jsmon.sh Verified account
@3nc0d3dGuY
Co-founder of @jsmonsh
GodfatherOrwa's profile image
Godfather Orwa 🇯🇴
@GodfatherOrwa
Hacker | Bug Hunter | Cooker | Top 5 P1 Warrior On https://t.co/dzFQH75OWj | LevelUpX Champion | 10+ 0Days/CVEs
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ HSTS multi-trailing-dot bypass-ish: possible incomplete fix for CVE-2022-30115 👨🏻‍💻 giant_anteater ➟ curl 🟧 Medium 💰 None 🔗 https://t.co/K4FNv698pA #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ HSTS multi-trailing-dot bypass-ish: possible incomplete fix for CVE-2022-30115 👨🏻‍💻 giant_anteater ➟ curl 🟧 Medium 💰 None 🔗 https://t.co/K4FNv698pA #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/um3rpJtrF0
1
1
0
0
410
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ rustls backend silently ignores CURLOPT_CRLFILE when native CA store is active 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/bjjDd9wWmw #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ rustls backend silently ignores CURLOPT_CRLFILE when native CA store is active 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/bjjDd9wWmw #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/0Z3rMLmXcG
0
2
0
0
429
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ libssh SFTP initialization ignores CURLOPT_TIMEOUT, hangs indefinitely 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/fIXQJ8S6P6 #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ libssh SFTP initialization ignores CURLOPT_TIMEOUT, hangs indefinitely 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/fIXQJ8S6P6 #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/dVnu5SkvJJ
2
5
0
0
555
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ cookie: case-insensitive path comparison in replace_existing() allows cookie eviction across dist... 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/bKVIiDqprv #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ cookie: case-insensitive path comparison in replace_existing() allows cookie eviction across dist... 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/bKVIiDqprv #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/JvcByC7mU0
0
1
0
0
294
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ CURLOPT_HSTS_CTRL disables shared HSTS without share guard — use-after-free and double-free 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/dMaeUOAeJ6 #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ CURLOPT_HSTS_CTRL disables shared HSTS without share guard — use-after-free and double-free 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/dMaeUOAeJ6 #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/yw7VV9cf64
2
2
0
0
301
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Unauthenticated File Upload to CDN 👨🏻‍💻 @ph0r3nsic ➟ Enjin 🟧 Medium 💰 None 🔗 https://t.co/vzq7Ppp5Ie #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Unauthenticated File Upload to CDN 👨🏻‍💻 @ph0r3nsic ➟ Enjin 🟧 Medium 💰 None 🔗 https://t.co/vzq7Ppp5Ie #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/yzCmISojs1
0
36
2
15
2K
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ IDOR: autotranslate.translateMessage Full Message Content Leak 👨🏻‍💻 josan_george ➟ https://t.co/t9fV32BDu9 🟧 Medium 💰 None 🔗 https://t.co/5FqgHc4QL9 #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ IDOR: autotranslate.translateMessage Full Message Content Leak 👨🏻‍💻 josan_george ➟ https://t.co/t9fV32BDu9 🟧 Medium 💰 None 🔗 https://t.co/5FqgHc4QL9 #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/ofJg6MedYQ
0
20
1
8
2K
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ NULL pointer dereference in libcurl URL API redirect_url() with CURLU_DEFAULT_SCHEME 👨🏻‍💻 mulan_dh ➟ curl ⬜ None 💰 None 🔗 https://t.co/P6giG6HAw7 #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ NULL pointer dereference in libcurl URL API redirect_url() with CURLU_DEFAULT_SCHEME 👨🏻‍💻 mulan_dh ➟ curl ⬜ None 💰 None 🔗 https://t.co/P6giG6HAw7 #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/wQRKt28SI0
0
1
0
0
429
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Trailing-dot IPv4 URL bypasses IP-address guard, allows wildcard DNS SAN match 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/RZSRf8xBLn #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Trailing-dot IPv4 URL bypasses IP-address guard, allows wildcard DNS SAN match 👨🏻‍💻 giant_anteater ➟ curl ⬜ None 💰 None 🔗 https://t.co/RZSRf8xBLn #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/Nqwe7fpMmB
0
4
2
2
675
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ SQL Injection in Column Type Parameter Allows Arbitrary SQL Execution 👨🏻‍💻 suul ➟ Nextcloud 🟥 High 💰 None 🔗 https://t.co/pMDLrvLTPe #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ SQL Injection in Column Type Parameter Allows Arbitrary SQL Execution 👨🏻‍💻 suul ➟ Nextcloud 🟥 High 💰 None 🔗 https://t.co/pMDLrvLTPe #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/VN0Gu3x3oz
0
1
0
1
425
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Origin IP Exposed waf bypass 👨🏻‍💻 @r00tSid ➟ Yuga Labs 🟨 Low 💰 $250 🔗 https://t.co/loKKHPvzhG #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Origin IP Exposed waf bypass 👨🏻‍💻 @r00tSid ➟ Yuga Labs 🟨 Low 💰 $250 🔗 https://t.co/loKKHPvzhG #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/yZ4jwQDYuv
1
7
1
2
554
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Kerberos/SPNEGO Connection Reuse Vulnerability 👨🏻‍💻 rootofpi_ramesh ➟ curl ⬜ None 💰 None 🔗 https://t.co/Oh0FIxkUet #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Kerberos/SPNEGO Connection Reuse Vulnerability 👨🏻‍💻 rootofpi_ramesh ➟ curl ⬜ None 💰 None 🔗 https://t.co/Oh0FIxkUet #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/7pPaUdzhOU
0
4
0
0
402
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ QuickSight Authorization Bypass: Chat Agents Accessible Despite Custom Permissions Denial 👨🏻‍💻 jcow ➟ AWS VDP ⬜ None 💰 None 🔗 https://t.co/5JLGvfuibb #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ QuickSight Authorization Bypass: Chat Agents Accessible Despite Custom Permissions Denial 👨🏻‍💻 jcow ➟ AWS VDP ⬜ None 💰 None 🔗 https://t.co/5JLGvfuibb #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/27VbFtAQ8i
0
7
0
0
527
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ another liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link 👨🏻‍💻 rox-11 ➟ Liberapay ⬜ None 💰 None 🔗 https://t.co/Xllx8Fmx59 #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ another liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link 👨🏻‍💻 rox-11 ➟ Liberapay ⬜ None 💰 None 🔗 https://t.co/Xllx8Fmx59 #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/SK7Ng4R0aZ
0
8
0
1
643
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link 👨🏻‍💻 rox-11 ➟ Liberapay ⬜ None 💰 None 🔗 https://t.co/kjQaIMx12J #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link 👨🏻‍💻 rox-11 ➟ Liberapay ⬜ None 💰 None 🔗 https://t.co/kjQaIMx12J #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/Cq89nnD47V
0
4
0
0
400
h1Disclosed's profile image
H1 Disclosed - Public Disclosures @h1Disclosed
⚡ Private circle can be added to another circle via API despite visibility restriction 👨🏻‍💻 vidang04 ➟ Nextcloud 🟨 Low 💰 $150 🔗 https://t.co/PCfqwbjfjh #bugbounty #bugbountytips #cybersecurity #infosec
h1Disclosed's tweet photo. ⚡ Private circle can be added to another circle via API despite visibility restriction 👨🏻‍💻 vidang04 ➟ Nextcloud 🟨 Low 💰 $150 🔗 https://t.co/PCfqwbjfjh #bugbounty #bugbountytips #cybersecurity #infosec https://t.co/R7U2FosmKZ
0
11
1
2
879

Last Seen Users on Sotwe

brrv_01's profile image
왜가리
Seen from Korea
mohamme11156908's profile image
lolo_gogo
Seen from Saudi Arabia
bNuJf90UUCluTGg's profile image
คนอุบลฯชอบเลียหีรุ่นยาย
Seen from Thailand
mmdl246734's profile image
محمد صالح
Hakan5135459489's profile image
Hakan
Seen from Turkey
scrsayc's profile image
مجود
Seen from Algeria
japsn's profile image
hazel
Seen from Netherlands
Twltter69292867's profile image
sevimli sempatik
Seen from Turkey
leduongbaolam88's profile image
Anh Động Đất Đẹp Trai
Seen from Vietnam
YourJessLadyboy's profile image
Jessi Ladyboy🍑 Verified account
Seen from Singapore

Trends for you

1
Brett Howden
Under 10K tweets
2
Kenzie
Under 10K tweets
3
Kelsey Mitchell
Under 10K tweets
4
Larkin
Under 10K tweets
5
McConnell
Under 10K tweets
6
Platner
Under 10K tweets
7
McNabb
Under 10K tweets
8
Rhyne
Under 10K tweets
9
Billy the Kid
Under 10K tweets
10
TADC
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.2M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
108.8M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
106.9M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.2M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.5M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
86.7M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
80.5M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.1M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.3M followers
youtube's profile image
13
YouTube Verified account
@youtube
68.6M followers
imvkohli's profile image
14
Virat Kohli Verified account
@imvkohli
68.4M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.4M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
cnn's profile image
17
CNN Verified account
@cnn
61.9M followers
neymarjr's profile image
18
Neymar Jr Verified account
@neymarjr
61M followers
x's profile image
19
X Verified account
@x
60.9M followers
cnnbrk's profile image
20
CNN Breaking News Verified account
@cnnbrk
59.9M followers