Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Hacker One
Hacker Oneadded 2026/05/09 1:45 p.m.27 views

Liberapay: another liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link

Hello again i discovered that there is another Liberapay profile of Liberapay team member at liberapay.com/mdvhimself contains a link to an expired Twitter account, creating a Broken Link Hijacking BLH vulnerability. An attacker could register the expired handle and control what appears to be an...

5.8AI score
Exploits0
Hacker One
Hacker Oneadded 2026/05/08 6:18 p.m.21 views

Liberapay: Liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link

The profile of a Liberapay team member contained a link to an expired Twitter account, creating a broken link hijacking vulnerability. The expired Twitter account link was displayed on the member's Liberapay profile and donation page, falsely confirming to donors that the account was legitimate a...

5.8AI score
Exploits0
Hacker One
Hacker Oneadded 2024/09/10 1:25 a.m.4 views

HackerOne: Takeover of hackerone.engineering via Medium

The report describes a broken link hijacking vulnerability on the hackerone.engineering domain, which belonged to HackerOne. The domain was found to be pointing to a non-existent page on Medium, allowing the reporter to create a page with the same URL and take over the domain...

7AI score
Exploits0
Hacker One
Hacker Oneadded 2023/08/27 4:21 p.m.38 views

Liberapay: Twitter account hijack @Costalfy

A broken link on the Liberapay website allowed attackers to hijack the Twitter account of Andy Costanza, potentially leading to scams or phishing attempts...

7AI score
Exploits0
Hacker One
Hacker Oneadded 2023/03/24 8:20 a.m.44 views

Nextcloud: Twitter Account hijack @nextcloudfrance

The Twitter account of Nextcloud France was vulnerable to Broken Link Hijacking BLH attack, which occurs when attackers exploit expired external links on credible websites or web applications. The attackers took over the expired link and claimed the username for testing purposes, redirecting user...

7AI score
Exploits0
Hacker One
Hacker Oneadded 2021/09/06 5:19 p.m.29 views

Kubernetes: Broken Link Hijacking on kubernetes.io Documentation

Report Submission Form Summary: Kubernetes docs has Spanish translation available. One of the page of spanish doc has an external reference to a confluence page. The confluence account was not registered on Atlassian. So I was able to takeover the page and host the PoC Kubernetes Version: NA...

6.8AI score
Exploits0
Rows per page
Query Builder