| MatchaCoffee | Information Exposure Through Debug Information (CWE-215) | | Tue, 27 Jan 2026 |
| proabiral | Server Misconfiguration - Subdomain Takeover (CWE-16) | | Tue, 27 Jan 2026 |
| Alex_mercer2002 | Open Redirect (CWE-601) | | Tue, 27 Jan 2026 |
| linhlhq | Heap Overflow (CWE-122) | | Tue, 27 Jan 2026 |
| zc | SQL Injection (CWE-89) | | Tue, 27 Jan 2026 |
| holasec | Improper Access Control - Generic (CWE-284) | | Tue, 27 Jan 2026 |
| ilhamaf | Insecure Direct Object Reference (IDOR) (CWE-639) | | Tue, 27 Jan 2026 |
| hack-a-ton-project | Improper Access Control - Generic (CWE-284) | | Tue, 27 Jan 2026 |
| talhakhan618 | Dependency on Vulnerable Third-Party Component (CWE-1395) | | Tue, 27 Jan 2026 |
| serhatcck | Improper Access Control - Generic (CWE-284) | | Tue, 27 Jan 2026 |
| Amier | HTML Injection (CWE-79) | | Tue, 27 Jan 2026 |
| Jakick | Information Disclosure (CWE-200) | | Tue, 27 Jan 2026 |
| talhakhan618 | Dependency on Vulnerable Third-Party Component (CWE-1395) | | Tue, 27 Jan 2026 |
| d0xing | Server Misconfiguration - Subdomain Takeover (CWE-16) | | Tue, 27 Jan 2026 |
| talhakhan618 | Dependency on Vulnerable Third-Party Component (CWE-1395) | | Tue, 27 Jan 2026 |
| TheCzar | Deserialization of Untrusted Data (CWE-502) | | Tue, 27 Jan 2026 |
| jebarson_007 | Improper Access Control - Generic (CWE-284) | | Tue, 27 Jan 2026 |
| f3rgustran | Deserialization of Untrusted Data (CWE-502) | | Tue, 27 Jan 2026 |
| khushal | Business Logic Errors (CWE-840) | | Tue, 27 Jan 2026 |
| talhakhan618 | Dependency on Vulnerable Third-Party Component (CWE-1395) | | Tue, 27 Jan 2026 |
| remonsec | Violation of Secure Design Principles (CWE-657) | | Tue, 27 Jan 2026 |
| RockLee888 | Insecure Direct Object Reference (IDOR) (CWE-639) | | Tue, 27 Jan 2026 |
| CyberR | Improper Authentication - Generic (CWE-287) | | Tue, 27 Jan 2026 |
| HealthStone | Insecure Storage of Sensitive Information (CWE-922) | | Tue, 27 Jan 2026 |
| prithiviksl-1905 | Business Logic Errors (CWE-840) | | Tue, 27 Jan 2026 |
| PortgasDMonkey | Cross-site Scripting (XSS) - Stored (CWE-79) | | Tue, 27 Jan 2026 |
| jiaren825 | Information Disclosure (CWE-200) | | Tue, 27 Jan 2026 |
| CyberR | Improper Access Control - Generic (CWE-284) | | Tue, 27 Jan 2026 |
| CyberR | Improper Access Control - Generic (CWE-284) | | Tue, 27 Jan 2026 |
| 0Xelweez | Business Logic Errors (CWE-840) | | Tue, 27 Jan 2026 |
| talhakhan618 | Dependency on Vulnerable Third-Party Component (CWE-1395) | | Tue, 27 Jan 2026 |
| deepocean | Improper Access Control - Generic (CWE-284) | | Tue, 27 Jan 2026 |
| mrbountid | Improper Authentication - Generic (CWE-287) | | Tue, 27 Jan 2026 |
| daemoon | Cross-site Scripting (XSS) - DOM (CWE-79) | | Tue, 27 Jan 2026 |
| dkrypt | Open Redirect (CWE-601) | | Tue, 27 Jan 2026 |
| hun33er | Code Injection (CWE-94) | | Tue, 27 Jan 2026 |
| dkrypt | Improper Authentication - Generic (CWE-287) | | Tue, 27 Jan 2026 |
| f3rgustran | HTML Injection (CWE-79) | | Tue, 27 Jan 2026 |
| comwrg | Cross-site Scripting (XSS) - Stored (CWE-79) | | Tue, 27 Jan 2026 |
| d3vilx00r | Race Condition (CWE-364) | | Tue, 27 Jan 2026 |
| nb1b3k | Cross-site Scripting (XSS) - Reflected (CWE-79) | | Tue, 27 Jan 2026 |
| nb1b3k | Cross-site Scripting (XSS) - Reflected (CWE-79) | | Tue, 27 Jan 2026 |
| AkoredeCyberShield | Permissive Cross-domain Policy with Untrusted Domains (CORS) (CWE-942) | | Tue, 27 Jan 2026 |
| nb1b3k | Cross-site Scripting (XSS) - Reflected (CWE-79) | | Tue, 27 Jan 2026 |
| nb1b3k | Cross-site Scripting (XSS) - Reflected (CWE-79) | | Tue, 27 Jan 2026 |
| hun33er | Path Traversal (CWE-22) | | Tue, 27 Jan 2026 |
| nb1b3k | Cross-site Scripting (XSS) - Reflected (CWE-79) | | Tue, 27 Jan 2026 |
| nb1b3k | Cross-site Scripting (XSS) - Reflected (CWE-79) | | Tue, 27 Jan 2026 |
| nb1b3k | Open Redirect (CWE-601) | | Tue, 27 Jan 2026 |
| nb1b3k | Open Redirect (CWE-601) | | Tue, 27 Jan 2026 |
