Security reports

Security reports by Rbcafe.

Hackerone

#217430 [connect.teavana.com] Open Redirect and abuse of connect.teavana.com
#227663 [https://www.dashlane.com] Test Panel Disclosure
#000000 Twitter related bug
#219197 [****************.gnip.com] .htpasswd
#198773 Drone Nextcloud
#201948 Disclosure of information on static.dl.mail.ru
#201489 Wordpress 4.7.1
#198673 HTTP-Basic Authentication on logs.nextcloud.com
#198012 Disclosure of administrators via JSON on nextcloud.com WordPress
#000000 Marktplaats related bug
#000000 Spotify related bug
#000000 Quora related bug
#173175 Obtain the username & the uid of the one doing the S3 sync on Hackerone

Bugcrowd

https://bugcrowd.com/Rbcafe

Bountyfactory

GEN [13/294] https://bountyfactory.io/ranking/
OVH [03/108] https://bountyfactory.io/ovh/ovh/

Apple

https://support.apple.com/fr-fr/HT201536

2017-05-12 webcast.apple.com

A server configuration issue was addressed. We would like to acknowledge Adrien Paulet of Rbcafe (rbcafe.com) and an anonymous researcher for reporting this issue.