Skip to content

Latest commit

 

History

History
107 lines (106 loc) · 15 KB

TOPLOCALTAPIOLA.md

File metadata and controls

107 lines (106 loc) · 15 KB
Raw

Top reports from LocalTapiola program at HackerOne:

  1. Oracle Webcenter Sites administrative and hi-privilege access available directly from the internet (/cs/Satellite) to LocalTapiola - 260 upvotes, $18000
  2. RCE using bash command injection on /system/images (toimitilat.lahitapiola.fi) to LocalTapiola - 206 upvotes, $6800
  3. CORS misconfiguration allows to steal customers data to LocalTapiola - 83 upvotes, $2100
  4. CORS misconfiguration allows to steal client's "password", Authorization token and the customer details e.g. names, SSN, bank account etc. to LocalTapiola - 83 upvotes, $1984
  5. Blind Stored XSS Against Lahitapiola Employees - Session and Information leakage to LocalTapiola - 68 upvotes, $5000
  6. Blind Stored XSS Against Lahitapiola Employees - Session and Information leakage to LocalTapiola - 67 upvotes, $3000
  7. User able to access company details in yrityspalvelu without proper permissions to LocalTapiola - 63 upvotes, $2000
  8. SQL Injection /webApp/oma_conf ctx parameter (viestinta.lahitapiola.fi) to LocalTapiola - 50 upvotes, $1350
  9. SQL Injection on /webApp/omatalousuk (viestinta.lahitapiola.fi) to LocalTapiola - 41 upvotes, $1560
  10. SQL Injection in sijoitustalous_peruutus (viestinta.lahitapiola.fi) to LocalTapiola - 36 upvotes, $1350
  11. PHPMYADMIN Setup is accessible without authentication on https://lml.lahitapiola.fi/ to LocalTapiola - 34 upvotes, $600
  12. Open Redirect (verkkopalvelu.lahitapiola.fi) to LocalTapiola - 28 upvotes, $400
  13. SQL Injection on /cs/Satellite path to LocalTapiola - 27 upvotes, $400
  14. SQL Injection /webApp/cancel_iltakoulu regId parameter (viestinta.lahitapiola.fi) to LocalTapiola - 26 upvotes, $1350
  15. Persistent XSS at verkkopalvelu.tapiola.fi using spoofed React element and React v.0.13.3 to LocalTapiola - 26 upvotes, $300
  16. Reflected XSS+CSRF on secure.lahitapiola.fi to LocalTapiola - 23 upvotes, $750
  17. Wordpress Users Disclosure (/wp-json/wp/v2/users/) to LocalTapiola - 23 upvotes, $50
  18. Malicious file upload (secure.lahitapiola.fi) to LocalTapiola - 22 upvotes, $600
  19. xmlrpc.php FILE IS enable it will used for bruteforce attack and denial of service to LocalTapiola - 20 upvotes, $315
  20. SQL Injection in lapsuudenturva (viestinta.lahitapiola.fi) to LocalTapiola - 19 upvotes, $1350
  21. F5 BIG-IP Cookie Remote Information Disclosure to LocalTapiola - 18 upvotes, $50
  22. User Information Disclosure via the REST API - /?_method=GET to LocalTapiola - 18 upvotes, $50
  23. SQL Injection on /webApp/sijoitustalousuk email-parameter + potential lack of CSRF Token (viestinta.lahitapiola.fi) to LocalTapiola - 17 upvotes, $1350
  24. Error Page Content Spoofing or Text Injection (viestinta.lahitapiola.fi) to LocalTapiola - 16 upvotes, $100
  25. CSRF allows attacker to delete item from customer's "Postilaatikko" to LocalTapiola - 15 upvotes, $500
  26. Single user DOS on selectedLanguage -cookie (yrityspalvelu.lahitapiola.fi) to LocalTapiola - 15 upvotes, $400
  27. SQL Injection /webApp/sijoitustalous_peruutus locId parameter (viestinta.lahitapiola.fi) to LocalTapiola - 15 upvotes, $350
  28. HTML Injection in email /webApp/lahti (viestinta.lahitapiola.fi) to LocalTapiola - 15 upvotes, $264
  29. Email Server Compromised at secure.lahitapiola.fi to LocalTapiola - 14 upvotes, $750
  30. Cookie-based client-side denial-of-service to all of the Lähitapiola domains to LocalTapiola - 13 upvotes, $400
  31. Sitemap causing strain on your Lahitapiola.fi server to LocalTapiola - 13 upvotes, $315
  32. Reflected XSS and Open Redirect in several parameters (viestinta.lahitapiola.fi) to LocalTapiola - 12 upvotes, $450
  33. Reflected XSS (myynti.lahitapiolarahoitus.fi) to LocalTapiola - 12 upvotes, $250
  34. CRLF injection in https://verkkopalvelu.lahitapiola.fi/ to LocalTapiola - 11 upvotes, $400
  35. High server resource usage on captcha (viestinta.lahitapiola.fi) to LocalTapiola - 11 upvotes, $315
  36. Reflected XSS of bbe-child-starter Theme via "value"-GET-parameter to LocalTapiola - 11 upvotes, $250
  37. Remote Code Execution in NovaStor NovaBACKUP DataCenter backup software (Hiback) to LocalTapiola - 11 upvotes, $100
  38. Content Spoofing or Text Injection (404 error page injection on yrityspalvelu) to LocalTapiola - 11 upvotes, $100
  39. WordPress username enumeration (/author) to LocalTapiola - 11 upvotes, $50
  40. Open Redirect bypass and cookie leakage on www.lahitapiola.com to LocalTapiola - 10 upvotes, $400
  41. The parameter in the POST query allows to control size of returned page which in turn can lead to the potential DOS attack to LocalTapiola - 10 upvotes, $315
  42. Reflected XSS on bbe_open_htmleditor_popup.php of BBE Theme via "value"-GET-parameter to LocalTapiola - 10 upvotes, $250
  43. Mixed Active Scripting Issue on https://www.lahitapiola.fi to LocalTapiola - 10 upvotes, $150
  44. CSRF possible when SOP Bypass/UXSS is available to LocalTapiola - 10 upvotes, $50
  45. F5 BigIP Backend Cookie Disclosure to LocalTapiola - 10 upvotes, $50
  46. Non-secure requests to www.lahitapiola.fi are not automatically upgraded to HTTPS to LocalTapiola - 10 upvotes, $50
  47. Multiple Vulnerabilities in Oracle Webcenter Sites (/cs/Satellite) to LocalTapiola - 9 upvotes, $600
  48. Single User DOS on SelectedLocale -cookie (verkkopalvelu.tapiola.fi) to LocalTapiola - 9 upvotes, $400
  49. Creating arbitrary cookies values /cs/CookieServer (www.lahitapiola.fi) to LocalTapiola - 9 upvotes, $150
  50. SMTP configuration vulnerability viestinta.lahitapiola.fi to LocalTapiola - 9 upvotes, $100
  51. Single user DOS on selectedLanuage -cookie at (verkkopalvelu.tapiola.fi) to LocalTapiola - 9 upvotes, $100
  52. Reflected XSS on sankarikoulutus (viestinta.lahitapiola.fi) to LocalTapiola - 9 upvotes, $50
  53. Test Page available with Server details on /r/test (viestinta.lahitapiola.fi) to LocalTapiola - 9 upvotes, $50
  54. Open redirection protection bypass (/cs/Satellite) to LocalTapiola - 8 upvotes, $400
  55. High server resource usage on captcha (viestinta.lahitapiola.fi) to LocalTapiola - 8 upvotes, $315
  56. Exposed authentication (/cs/Satellite) to LocalTapiola - 8 upvotes, $200
  57. Multiple Reflected XSS /webApp/lahti (viestinta.lahitapiola.fi) to LocalTapiola - 8 upvotes, $150
  58. Cleartext protocol after bank authentication (yrityspalvelu.tapiola.fi) to LocalTapiola - 8 upvotes, $100
  59. Poodle attack SSLv3 Support (viestinta.lahitapiola.fi) to LocalTapiola - 8 upvotes, $60
  60. SQL Injection on /webApp/lapsuudenturva (viestinta.lahitapiola.fi) to LocalTapiola - 7 upvotes, $1350
  61. Authorization issue on 'valtakirjat' (/e2/verkkopalvelu/) to LocalTapiola - 7 upvotes, $490
  62. XSS and open redirect in verkkopalvelu.lahitapiola.fi to LocalTapiola - 7 upvotes, $450
  63. Sql injection on /webApp/sijoituswebinaari (viestinta.lahitapiola.fi) to LocalTapiola - 7 upvotes, $350
  64. SQL Injection on /webApp/viivanalle (viestinta.lahitapiola.fi) to LocalTapiola - 7 upvotes, $350
  65. Flash-based XSS on mediaelement-flash-audio-ogg.swf of www.lahitapiolarahoitus.fi to LocalTapiola - 7 upvotes, $250
  66. CSRF bypass + XSS on verkkopalvelu.tapiola.fi to LocalTapiola - 7 upvotes, $50
  67. /icons/README available on viestinta.lahitapiola.fi to LocalTapiola - 7 upvotes, $0
  68. Blacklist bypass for /cs/Satellite (www.lahitapiola.fi) to LocalTapiola - 6 upvotes, $600
  69. HTML Injection in email from http://www.lahitapiola.fi/henkilo/sivut/tonttutesti to LocalTapiola - 6 upvotes, $264
  70. Securemail server used to internal spam and resource exhaustion to LocalTapiola - 6 upvotes, $264
  71. Reflected XSS Vulnerability in https://www.lahitapiola.fi/cs/Satellite to LocalTapiola - 6 upvotes, $250
  72. Brute force unsubscription on /webApp/unsub_sb (viestinta.lahitapiola.fi) to LocalTapiola - 6 upvotes, $200
  73. Reflected XSS in LTContactFormReceiver (/cs/Satellite) to LocalTapiola - 6 upvotes, $50
  74. Disclosure of IBM Websphere page to LocalTapiola - 6 upvotes, $50
  75. Possible sweet32 lahitapiola.fi to LocalTapiola - 6 upvotes, $50
  76. Information exposure via error pages (www.lahitapiola.fi Tomcat) to LocalTapiola - 6 upvotes, $50
  77. DoS of www.lahitapiolarahoitus.fi via CVE-2018-6389 exploitation to LocalTapiola - 6 upvotes, $50
  78. Lahitapiola´s customer names send to 3rd party to LocalTapiola - 5 upvotes, $588
  79. The PdfServlet-functionality used by the "Tee vakuutustodistus" allows injection of custom PDF-content via CSRF-attack to LocalTapiola - 5 upvotes, $300
  80. Option method enabled (viestinta.lahitapiola.fi) to LocalTapiola - 5 upvotes, $60
  81. Internal IP Address Disclosure at https://www.lahitapiolarahoitus.fi/wp-json/wp/v2/pages to LocalTapiola - 5 upvotes, $50
  82. Abusing and Hacking the SMTP Server secure.lahitapiola.fi to LocalTapiola - 4 upvotes, $300
  83. Reflected XSS Vulnerability in www.lahitapiola.fi/cs/Satellite to LocalTapiola - 4 upvotes, $250
  84. Exploiting Secure Shell (SSH) on mobilelt.lahitapiola.fi to LocalTapiola - 4 upvotes, $100
  85. HTTP status code manipluation & java stack trace to LocalTapiola - 4 upvotes, $100
  86. XSS on 3rd party service Localtapiola is using to LocalTapiola - 4 upvotes, $100
  87. /icons/README is still available on viestinta.lahitapiola.fi to LocalTapiola - 4 upvotes, $50
  88. Verbose error message reveals internal system hostnames, protols and used ports (yrityspalvelu.tapiola.fi) to LocalTapiola - 4 upvotes, $50
  89. Disclosure of Users Information via Wordpress API (?rest_route) to LocalTapiola - 4 upvotes, $50
  90. Posting modified information in 'Investment section' will cause unintended information change in verkkopalvelu.tapiola.fi to LocalTapiola - 3 upvotes, $1000
  91. Reflected XSS and Open Redirect (verkkopalvelu.lahitapiola.fi) to LocalTapiola - 3 upvotes, $400
  92. Reflected XSS on iltakoulu_varkaus (viestinta.lahitapiola.fi) to LocalTapiola - 3 upvotes, $150
  93. Amazon Bucket Accessible (http://inpref.s3.amazonaws.com/) to LocalTapiola - 3 upvotes, $100
  94. Enumeration in unsubscribe -function of /omatalousuk (viestinta.lahitapiola.fi) to LocalTapiola - 3 upvotes, $100
  95. Possibly big authorization problem in Lähitapiola´s varainhoito to LocalTapiola - 2 upvotes, $400
  96. Suspicious browser fingerprinting(?) scripts on http://www.lahitapiola.fi/ redirector to LocalTapiola - 2 upvotes, $100
  97. OpenSSL Padding Oracle Attack (CVE-2016-2107) on viestinta.lahitapiola.fi to LocalTapiola - 2 upvotes, $100
  98. Open redirect - user interaction needed (verkkopalvelu.lahitapiola.fi/e2/..) - based on #179328 to LocalTapiola - 2 upvotes, $100
  99. Reflected XSS in www.lahitapiola.fi (/cs/Satellite) using Oracle WebCenter -page to LocalTapiola - 2 upvotes, $50
  100. show control page if you insert ' at http://viestinta.lahitapiola.fi/ to LocalTapiola - 2 upvotes, $50
  101. Source Code Disclosure on out of scope domain viestinta.lahitapiola.fi to LocalTapiola - 2 upvotes, $0
  102. www.lahitapiola.fi DOM XSS by choosing regional company to LocalTapiola - 1 upvotes, $100
  103. DOM XSS bypassing in Regional Office -selector to LocalTapiola - 1 upvotes, $100
  104. Oracle WebCenter Sites Support Tools available and Information disclosure (/cs/Satellite) to LocalTapiola - 1 upvotes, $100
  105. User Information Disclosure via Json response to LocalTapiola - 1 upvotes, $50