the unofficial HackerOne disclosure timeline.

X
b'Mavenlink' disclosed a bug submitted by b'cablej' 
b'Password reset link injection allows redirect to malicious URL'
13 Dec 2017 timeline
b'HackerOne' disclosed a bug submitted by b'abidbaseer' 
b'Open redirect deceive in hackerone.com via another open redirect link.'
13 Dec 2017 timeline
b'LocalTapiola' disclosed a bug submitted by b'w00tr00t' 
b'PHPMYADMIN Setup is accessible without authentication on https://lml.lahitapiola.fi/'
13 Dec 2017 timeline
b'LocalTapiola' disclosed a bug submitted by b'tonsku' 
b'Possible sweet32 lahitapiola.fi'
13 Dec 2017 timeline
b'LocalTapiola' disclosed a bug submitted by b'mr_edwards' 
b'Single User DOS on SelectedLocale -cookie (verkkopalvelu.tapiola.fi)'
13 Dec 2017 timeline
b'Infogram' disclosed a bug submitted by b'saikiran-10099' 
b'No Rate Limit on account deletion request(Leads to huge email flooding/email bombing)'
12 Dec 2017 timeline
b'Infogram' disclosed a bug submitted by b't-pwn' 
b'Bruteforcing Coupons'
12 Dec 2017 timeline
b'The Internet' disclosed a bug submitted by b'pwnsdx' 
b'Unsecure: Bypass alerts of Little Flocker / Little Snitch / HandsOff! / BlockBlock (same concept can be applied to other security tools)'
12 Dec 2017 timeline
b'Infogram' disclosed a bug submitted by b'mksecurity' 
b'Non Critical Code Quality Bug / Self XSS on Map Editor'
12 Dec 2017 timeline
b'Infogram' disclosed a bug submitted by b'blackpanther_akaash' 
b'No Rate limit on Password Reset Function'
12 Dec 2017 timeline
b'Infogram' disclosed a bug submitted by b'zubair' 
b'Javascript Payload reflected Back in Report Embed Code'
12 Dec 2017 timeline
b'HackerOne' disclosed a bug submitted by b'wh47' 
b'Content Security Policy not applied to error pages at multiple HackerOne endpoints'
12 Dec 2017 timeline
b'WordPress' disclosed a bug submitted by b'morningstar' 
b'Stored xss via template injection'
11 Dec 2017 timeline
b'Infogram' disclosed a bug submitted by b'muon4' 
b'New team invitation functionality allows extend team without upgrade'
11 Dec 2017 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'dblack' 
b'Command injection in the process of downloading the latest version of the cloud key firmware through the unifi management software.'
11 Dec 2017 timeline
b'Perl (IBB)' disclosed a bug submitted by b'mipu94' 
b'Interger overflow in eval trigger write out of bound'
11 Dec 2017 timeline
b'Infogram' disclosed a bug submitted by b'mksecurity' 
b'Report Design Critical Stored DOM XSS Vulnerability '
08 Dec 2017 timeline
b'New Relic' disclosed a bug submitted by b'jon_bottarini' 
b'Bypass of my two other reports #267636 + #255894 - (IDOR) Ability to see full name associated with other New Relic accounts'
07 Dec 2017 timeline
b'HackerOne' disclosed a bug submitted by b'cjlegacion' 
b'Able To Check The Exact Bounty Balance of any Bug Bounty Program'
06 Dec 2017 timeline
b'Trello' disclosed a bug submitted by b'nohack' 
b'Sessions Token In Get Parameter Request Initiating Websocket Connection'
06 Dec 2017 timeline
1 ... 515 516 517 518 519 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM