the unofficial HackerOne disclosure timeline.

X
b'HackerOne' disclosed a bug submitted by b'ashish_r_padelkar' 
b'Pending member invitations are not revoked on program name change'
18 Nov 2017 timeline
b'HackerOne' disclosed a bug submitted by b'bigbug' 
b"GraphQL sessions aren't immediately invalidated when user password is changed"
17 Nov 2017 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'muskecan' 
b"2FA bypass - confirmation tokens don't expire"
17 Nov 2017 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'drough' 
b'Error Page Content Spoofing or Text Injection'
17 Nov 2017 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'streaak2' 
b'CSRF in generating a new Personal Key'
17 Nov 2017 timeline
b'Weblate' disclosed a bug submitted by b'110110110' 
b'Improper validation of unicode characters '
17 Nov 2017 timeline
b'Grabtaxi Holdings Pte Ltd' disclosed a bug submitted by b'jouko' 
b'www.drivegrab.com SQL injection'
17 Nov 2017 timeline
b'HackerOne' disclosed a bug submitted by b'clarckowen_' 
b'Issue with password change in Disabled Account'
16 Nov 2017 timeline
b'HackerOne' disclosed a bug submitted by b'edio' 
b'Additional bypass allows SSRF for internal netblocks'
16 Nov 2017 timeline
b'Automattic' disclosed a bug submitted by b'dutchgraa' 
b'Persistent Cross-Site Scripting in WooCommerce WordPress plugin'
16 Nov 2017 timeline
b'WordPress' disclosed a bug submitted by b'dutchgraa' 
b'WordPress core - Denial of Service via Cross Site Request Forgery'
16 Nov 2017 timeline
b'Aspen' disclosed a bug submitted by b'kalyani64' 
b"Session does't get expired after changing the password in https://readthedocs.org"
16 Nov 2017 timeline
b'HackerOne' disclosed a bug submitted by b'vulnholic' 
b'Private Program all members disclosed '
16 Nov 2017 timeline
b'Infogram' disclosed a bug submitted by b'pinoywhitehat' 
b'Bypass insecure password validation'
16 Nov 2017 timeline
b'IRCCloud' disclosed a bug submitted by b'bagipro' 
b'[IRCCloud Android] Theft of arbitrary files leading to token leakage'
15 Nov 2017 timeline
b'Infogram' disclosed a bug submitted by b'jarmouz' 
b'Stored XSS On Wordpress Infogram plugin'
15 Nov 2017 timeline
b'Moneybird' disclosed a bug submitted by b'r3ligious-hunt3r' 
b'Open Redirection while saving User account Settings '
15 Nov 2017 timeline
b'Maximum' disclosed a bug submitted by b'smit' 
b'[werkenbijmcdonalds.nl] Unsafe-inline in "script-src" results in "bootstrapping" or passing data to JavaScript from HTML pages. '
15 Nov 2017 timeline
b'HackerOne' disclosed a bug submitted by b'flashdisk' 
b'Program profile metrics endpoint contains mean time to triage, even when turned off'
14 Nov 2017 timeline
b'AlienVault ' disclosed a bug submitted by b'zee_shan' 
b'[www.threatcrowd.org] Reflected XSS Bypass'
14 Nov 2017 timeline
1 ... 519 520 521 522 523 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM