Dark C0d3rs

Dark C0d3rs > Exploit Log > Research Papers/Vulnerability reports > HackerOne Disclosed Reports - 2025-10-22
Full Version: HackerOne Disclosed Reports - 2025-10-22
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

hashXploiter

10-23-2025, 12:30 PM
Logo
Medium
resolved

Reflected Cross-Site Scripting (XSS) in Revive Adserver 5.5.2


Bug reported by Rabbit was disclosed at October 22, 2025, 9:54 am   |   Cross-site Scripting (XSS) - Reflected


Logo
Medium
resolved

2FA bypass possible on https://authsvc.singlestore.com


Bug reported by Axolot was disclosed at October 22, 2025, 6:44 am   |   Authentication Bypass

A vulnerability was discovered that allowed the 2FA authentication mechanism to be bypassed completely. An attacker could access the victim's account by only knowing the email address and password, without requiring the 2FA code.


Dark C0d3rs > Exploit Log > Research Papers/Vulnerability reports > HackerOne Disclosed Reports - 2025-10-22