huntr
huntr copied to clipboard
418sec
Public Roadmap | huntr.dev
Maintainers continually request CVEs only once the report has been resolved (i.e. fixed). We could provide a self-serve mechanism which allows a maintainer to assign a CVE to the report....
Some maintainers have been confused about whether or not they are logged in when viewing reports with a magic URL. We could possibly add a hint (`not logged in`) in...
https://huntr.dev/repos/microweber/microweber For example It would be more useful if it should the last 100 reports or allow for pagination
In the current version of huntr.dev a report goes public when a maintainer assigned a fix to an issue. I think it'll be better to differentiate between fixing a flaw...
In this [report](https://huntr.dev/bounties/6e855178-1484-4188-9bba-72c96a7cef37/), the maintainers adjusted the severity down but then reverted it back up to the initial severity proposed by the researcher. In this case, it is unfair for...
Currently, we send an e-mail per new report to maintainers. To prevent maintainers from being overwhelmed with 7-8 e-mails, we could compress all reports into a single notification e-mail using...
Hi team! As Jamie knows (and maybe others), I have brought up an issue where maintainers can downgrade severity scores without justification, reasoning, or, at times, anything based on sound...
For example: https://huntr.dev/bounties/d914fd3c-9c48-4d4e-a3b2-6b8d09b0f229/ and It seems to be based on the old CWE method
Currently huntr provides no way for researchers to challenge a developer's severity assessment. For both the benefit of researchers, and huntr, this option should be made available. In its current...
Hi there I want to request add video and image option in the report so a researcher can add his poc videos or images in the same report rather than...
