Manual Approval Thread

Questions or requests about submissions
Post Reply
mandarin_canard
Posts:1
Joined:Tue Aug 04, 2020 12:06 pm
Re: Manual Approval Thread

Post by mandarin_canard » Mon Dec 07, 2020 1:07 pm

Hello,

Can you check 1575261 please ?
Top
Esss_ayy
Posts:35
Joined:Sun Jun 17, 2018 7:16 pm
Contact:
Contact Esss_ayy

Re: Manual Approval Thread

Post by Esss_ayy » Wed Dec 09, 2020 11:47 am

Hello,
Greetings Admin,

Kindly review below mentioned reports, as most of reports are having xmlrpc enabled on post request and some are having user info disclosure through rest API, In past such types of reports were getting accepted and from last few weeks i have noticed that they are closed as non reproduce and my hundreds of reports are wasted as such.

1579651
1579650
1579649
1579648
1579647
1575848
1575829
1575602

Kindly review them, Will wait for your kind response.

Regards
Ali
Top
ahfibahru
Posts:2
Joined:Sat Apr 04, 2020 11:59 pm

Re: Manual Approval Thread

Post by ahfibahru » Thu Dec 10, 2020 11:15 am

closed
Last edited by ahfibahru on Sun Jan 10, 2021 1:34 pm, edited 6 times in total.
Top
amlnspqr
Posts:291
Joined:Thu Feb 18, 2016 3:29 pm

Re: Manual Approval Thread

Post by amlnspqr » Thu Dec 10, 2020 12:44 pm

1405118 1451899 1592860 please
Top
Esss_ayy
Posts:35
Joined:Sun Jun 17, 2018 7:16 pm
Contact:
Contact Esss_ayy

Re: Manual Approval Thread

Post by Esss_ayy » Thu Dec 10, 2020 9:13 pm

Hello Admin,

Kindly approve these reports, these are working xss reports.
1592933

 1592924

 1592922
Top
raj1997upadhyay
Posts:3
Joined:Sat Jan 11, 2020 1:01 pm

Re: Manual Approval Thread

Post by raj1997upadhyay » Sun Dec 13, 2020 4:34 am

Hello Admin,
Can you please check following reports it's in manual checking,
1601227
1601238
Able to see php.ini file ( configuration files )
Top
User avatar
x1admin
Site Admin
Posts:3102
Joined:Sun Nov 15, 2015 7:04 pm

Re: Manual Approval Thread

Post by x1admin » Mon Dec 14, 2020 7:49 am

approved
Top
JonLaing4
Posts:23
Joined:Wed Sep 30, 2020 9:40 am

Re: Manual Approval Thread

Post by JonLaing4 » Mon Dec 14, 2020 3:44 pm

Hello,

Please approve ID 1607551 - xss can be triggered by registering with the name of an xss payload as per screenshot:
Attachments
Screenshot from 2020-12-14 15-45-29.png
Screenshot from 2020-12-14 15-45-29.png (175.79KiB)Viewed 1815 times
Screenshot from 2020-12-14 15-44-57.png
Screenshot from 2020-12-14 15-44-57.png (215.97KiB)Viewed 1815 times
Top
donpavlas
Posts:1
Joined:Wed Jul 15, 2020 10:26 pm

Re: Manual Approval Thread

Post by donpavlas » Mon Dec 14, 2020 10:28 pm

Hi, my submission 1606422 is declined as "can't be reproduced". Please double check it or tell me, whats the issue here. The url arne******.de/.git/config shows, that the git repository is publicly available, which is a real threat.

Thank you!
Top
sotblad
Posts:9
Joined:Mon Dec 14, 2020 9:15 pm

Re: Manual Approval Thread

Post by sotblad » Wed Dec 16, 2020 11:44 am

Hey, please check 1612380. It's rejected and marked as "Can't reproduce vulnerability" while it's a valid vulnerability.
I'm in talks with the website and they told me to open these vulnerability reports here.
Top
Post Reply

Return to “Submissions Discussion”

Who is online

Users browsing this forum: No registered users and 2 guests