the unofficial HackerOne disclosure timeline.

X
b'Mail.Ru' disclosed a bug submitted by b'buglloc' 
b'XSS on https://account.mail.ru/login via postMessage'
27 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'muber-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'lite:sess Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'udi-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'SSL-protected Reflected XSS in m.uber.com'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'Configuration and/or source code files on uchat-staging.uberinternal.com can be viewed without OneLogin SSO Authentication '
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b"It's possible to view configuration and/or source code on uchat.awscorp.uberinternal.com without "
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'WordPress' disclosed a bug submitted by b'rahulpratap' 
b'Lack of Sanitization and Insufficient Authentication'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'The Uber Promo Customer Endpoint Does Not Implement Multifactor Authentication, Blacklisting or Rate Limiting'
24 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'The Microsoft Store Uber App Does Not Implement Server-side Token Revocation'
24 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'The Microsoft Store Uber App Does Not Implement Certificate Pinning'
24 Dec 2017 timeline
b'Twitter' disclosed a bug submitted by b'avinash_' 
b'Open Redirect Protection Bypass'
23 Dec 2017 timeline
b'Mapbox' disclosed a bug submitted by b'aneeskhan' 
b'Admin Panel Accessed (OAuth Bypassed ) '
21 Dec 2017 timeline
b'Zendesk' disclosed a bug submitted by b'yckul' 
b'Secret API Key Leakage via Query String'
20 Dec 2017 timeline
b'Zendesk' disclosed a bug submitted by b'sergeym' 
b'dom based xss in *.zendesk.com/external/zenbox/'
20 Dec 2017 timeline
b'Razer US' disclosed a bug submitted by b'edio' 
b'Open redirect in razer-id.razerzone.com via the redirect parameter.'
20 Dec 2017 timeline
b'Razer US' disclosed a bug submitted by b'niwasaki' 
b'Reflected XSS in razer-id.razerzone.com'
20 Dec 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'ruvlol' 
b'Possibility to view subdepartments for arbitrary domain'
20 Dec 2017 timeline
1 ... 513 514 515 516 517 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM