BUGemot

Vulnerability Disclosure and Reward Program

Founded vulnerabilities

BUG-284
Cross Site Scripting

19 February 2019

BUG-283
an error in your SQL syntax

30 December 2018

BUG-282
Admin page bypass and Sql injection / shell uploaded

15 January 2018

BUG-281
SQL Injection

05 November 2017

BUG-280
Web Bug

10 October 2017

BUG-278
Incorrect installation

07 October 2017

BUG-277
XSS in set_city

21 September 2017

BUG-276
Errors

29 August 2017

BUG-275
SQL injection

29 August 2017

BUG-274
SQL injection

29 August 2017

BUG-273
XSS

29 August 2017

BUG-272
SSL POODLE

29 August 2017

BUG-271
XSS and Sql Injection

25 August 2017

BUG-270
Sql İnjection

25 August 2017

BUG-269
SQL injection

24 August 2017

BUG-268
phpinfo

24 August 2017

BUG-267
SQL injection

24 August 2017

BUG-266
Sql Injection

24 August 2017

BUG-265
SSL POODLE

24 August 2017

BUG-264
Script - old version

09 August 2017

BUG-263
SQL injection

22 July 2017

BUG-262
Admin Page Bypass

22 July 2017

BUG-260
Admin page bypass

20 July 2017

BUG-259
SQL injection

20 July 2017

BUG-258
SQL injection

20 July 2017

BUG-257
Admin page bypass

20 July 2017

BUG-256
Admin page bypass

20 July 2017

BUG-255
Full path disclosure

17 July 2017

BUG-254
Variable manipulation, ticket price can be changed

22 June 2017

BUG-253
Update User information

22 June 2017

BUG-252
Stored XSS on registration

22 June 2017

BUG-251
Bypass user login

21 June 2017

BUG-250
XSS in Search

19 June 2017

BUG-249
XSS in Search

02 June 2017

BUG-248
Directory Traversal

30 May 2017

BUG-247
XSS on Search page

30 May 2017

BUG-246
Errors

13 May 2017

BUG-245
XSS on site

16 April 2017

BUG-243
SQL İnjection

15 April 2017

BUG-242
All database

15 April 2017

BUG-241
reading phpinfo()

15 April 2017

BUG-240
XSS on website

13 April 2017

BUG-239
Information about folder

07 April 2017

BUG-238
MySQL error seen

03 April 2017

BUG-237
XSS on Search

03 April 2017

BUG-233
SQL Injection

18 March 2017

BUG-232
SQL Injection bug

18 March 2017

BUG-231
sql injection and admin page bypass

03 March 2017

BUG-229
XSS

27 February 2017

BUG-228
Sensitive data

27 February 2017

Companies

We helped these companies to eliminate the vulnerabilities we found