Public
Zendesk
bug reports.
4,419
Bug Reports -
$2,030,173
Paid Out
Last Updated:
12th September, 2017
Team
Bounty
Title
Zendesk
$2,000
a stored xss in web widget chat
Zendesk
-
Missing function level access controls allowing attacker to abuse file access controls. Multiple vulnerabilities
Zendesk
$100
XSS in zendesk.com/product/
Zendesk
$250
XSS In /zuora/ functionality
Zendesk
$500
[HIGH RISK] CSRF could potentially delete a zendesk subdomain.
Zendesk
$100
AWS S3 bucket writable for authenticated aws user
Zendesk
$50
Stored XSS on [your_zendesk].zendesk.com in Facebook Channel
Zendesk
$50
Stored XSS via Angular Expression injection on developer.zendesk.com
Zendesk
$100
[CRITICAL] HTML injection issue leading to account take over
Zendesk
$500
Stored XSS in comments
Zendesk
$500
[CRITICAL] CSRF leading to account take over
Zendesk
$50
Content Spoofing
Zendesk
$100
CSV Excel Macro Injection Vulnerability in export customer tickets
Zendesk
$100
Cross-site Scripting https://www.zendesk.com/product/pricing/
Zendesk
$500
Stored XSS in comments
Zendesk
$200
Stored Cross site scripting In developer.zendesk.com
Zendesk
$50
Error stack trace enabled