Skip to content

Latest commit

 

History

History
71 lines (67 loc) · 7.95 KB

TOPPHABRICATOR.md

File metadata and controls

71 lines (67 loc) · 7.95 KB
Raw

Back

Top reports from Phabricator program at HackerOne:

  1. Command injection on Phabricator instance with an evil hg branch name to Phabricator - 38 upvotes, $1000
  2. Phabricator is vulnerable to padding oracle attacks and chosen-ciphertext attacks. to Phabricator - 21 upvotes, $750
  3. SSRF in notifications.server configuration to Phabricator - 20 upvotes, $300
  4. Markdown parsing issue enables insertion of malicious tags to Phabricator - 18 upvotes, $500
  5. Window.opener protection Bypass to Phabricator - 18 upvotes, $300
  6. IDOR bug to See hidden slowvote of any user even when you dont have access right to Phabricator - 15 upvotes, $300
  7. User with only Viewing Privilege can send message to Room to Phabricator - 14 upvotes, $300
  8. HTML in Diffusion not escaped in certain circumstances to Phabricator - 12 upvotes, $600
  9. Window.opener fix bypass to Phabricator - 12 upvotes, $300
  10. Exposing voting results on the Slowvote application without actually voting to Phabricator - 11 upvotes, $300
  11. Differential "Show Raw File" feature exposes generated files to unauthorised users to Phabricator - 10 upvotes, $600
  12. Log in a user to another account to Phabricator - 10 upvotes, $300
  13. Administrator can create user without entering high security mode to Phabricator - 10 upvotes, $300
  14. Broken Authentication and Session Management to Phabricator - 7 upvotes, $300
  15. Fetching binaries (for software installation) over HTTP without verification (RCE as ROOT by MITM) to Phabricator - 7 upvotes, $300
  16. IRC-Bot exposes information to Phabricator - 7 upvotes, $300
  17. TOTP Key is shorter than RFC 4226 recommended minimum to Phabricator - 6 upvotes, $300
  18. Improperly implemented password recovery link functionality to Phabricator - 5 upvotes, $300
  19. Persistent XSS: Editor link to Phabricator - 5 upvotes, $300
  20. OAuth Stealing Attack (New) to Phabricator - 4 upvotes, $400
  21. The special code in editor has no Authority control and can lead to Information Disclosure to Phabricator - 4 upvotes, $0
  22. Bypass auth.email-domains to Phabricator - 3 upvotes, $1000
  23. Bypass auth.email-domains (2) to Phabricator - 3 upvotes, $500
  24. OAuth access_token stealing in Phabricator to Phabricator - 3 upvotes, $450
  25. UnAuthorized Editorial Publishing to Blogs to Phabricator - 3 upvotes, $300
  26. Control character allowed in username to Phabricator - 3 upvotes, $300
  27. Error page Text Injection. to Phabricator - 3 upvotes, $0
  28. Enumerating emails through "Forgot Password" form to Phabricator - 3 upvotes, $0
  29. Restricted file access when it exists in old versions of task or wiki document to Phabricator - 3 upvotes, $0
  30. Autoclose can close any task regardless of policies/spaces to Phabricator - 3 upvotes, $0
  31. Request vulnerable to CSRF to Phabricator - 3 upvotes, $0
  32. Issue:Form does not contain an anti-CSRF token to Phabricator - 3 upvotes, $0
  33. Login CSRF using Twitter OAuth to Phabricator - 2 upvotes, $300
  34. Content Spoofing through URL to Phabricator - 2 upvotes, $0
  35. Password Policy issue to Phabricator - 2 upvotes, $0
  36. link reset problem to Phabricator - 2 upvotes, $0
  37. An unsafe design practice in the Passphrase may result in Secret being accidentally changed. to Phabricator - 2 upvotes, $0
  38. The mailbox verification API interface is unlimited and can be used as a mailbox bomb to Phabricator - 2 upvotes, $0
  39. XSS in editor by any user to Phabricator - 1 upvotes, $1000
  40. Multiple so called 'type juggling' attacks. Most notably PhabricatorUser::validateCSRFToken() is 'bypassable' in certain cases. to Phabricator - 1 upvotes, $450
  41. Open redirection on secure.phabricator.com to Phabricator - 1 upvotes, $400
  42. Abusing daemon logs for Privilege escalation under certain scenarios to Phabricator - 1 upvotes, $300
  43. Forgot Password Issue to Phabricator - 1 upvotes, $300
  44. Phabricator Diffusion application allows unauthorized users to delete mirrors to Phabricator - 1 upvotes, $300
  45. Passphrase credential lock bypass to Phabricator - 1 upvotes, $300
  46. CSRF token valid even after the session logout of a particular user to Phabricator - 1 upvotes, $0
  47. Back - Refresh - Attack To Obtain User Credentials to Phabricator - 1 upvotes, $0
  48. Password Reset Links Not Expiring to Phabricator - 1 upvotes, $0
  49. Content spoofing to Phabricator - 1 upvotes, $0
  50. Content injection to Phabricator - 1 upvotes, $0
  51. Server Side Request Forgery in macro creation to Phabricator - 1 upvotes, $0
  52. No authentication required to add an email address. to Phabricator - 1 upvotes, $0
  53. Full path disclosure to Phabricator - 1 upvotes, $0
  54. Hyper Link Injection In email and Space Characters Allowed at Password Field. to Phabricator - 1 upvotes, $0
  55. Credential gets exposed to Phabricator - 1 upvotes, $0
  56. The "Download Raw Diff" URL is viewable by everyone to Phabricator - 1 upvotes, $0
  57. Abusing VCS control on phabricator to Phabricator - 0 upvotes, $600
  58. Phabricator Phame Blog Skins Local File Inclusion to Phabricator - 0 upvotes, $500
  59. SSRF vulnerability (access to metadata server on EC2 and OpenStack) to Phabricator - 0 upvotes, $300
  60. XSS with Time-of-Day Format to Phabricator - 0 upvotes, $300
  61. Information leakage through Graphviz blocks to Phabricator - 0 upvotes, $300
  62. Extended policy checks are buggy to Phabricator - 0 upvotes, $300
  63. Dashboard panel embedded onto itself causes a denial of service to Phabricator - 0 upvotes, $0
  64. libphutil: removing bytes from a PhutilRope does not work as intended to Phabricator - 0 upvotes, $0

Back