We would like to thank the following individuals and/or organizations, who have responsibly disclosed vulnerabilities to us.
Hatim Chabik | 13 Jan 2022 | Reported a Reflective XSS attack on marketing sites. |
Manu Sharma | 31 May 2021 | Reported a Reflective XSS attack on marketing sites. |
Ghazanfar Ali Kazam | 31 May 2021 | Reported information leakage from an internal server. |
Akash H. C. | 9 September 2020 | Reported a password reset token leak |
Akash Patil | 1 August 2020 | Reported an account takeover using IDN homograph attack. |
Pethuraj M | 1 July 2020 | Reported a flaw in our password reset flow |
Miguel Santareno | 14 May 2020 | Reported information leakage from marketing sites. |
Gaurav Kumar and Shivam Dattana / Team Bugmania | 28 September 2019 | Reported a Cross site scripting (XSS) on magereport.com. |
Mike de Landgraaf / MDL Online | 21 March 2019 | Reported a misconfiguration that allowed user impersonation on Hypernode hosted webshops. |
12 March 2019 | Reported information leakage from an internal deployment server. | |
Jan Piet van Dijk / Interwijs B.V. | 28 August 2018 | Reported a privilege escalation on Hypernode, leading to a local root exploit. |
1 June 2018 | Reported a misconfiguration that allowed a Hypernode’s preconfigured security settings to be bypassed. | |