the unofficial HackerOne disclosure timeline.

X
b'AlienVault ' disclosed a bug submitted by b'kendoclaw' 
b'Puplic .htaccess/.htpasswd/.canvas files leads to password disclosure.'
14 Nov 2017 timeline
b'AlienVault ' disclosed a bug submitted by b'cujanovic' 
b'DNS pinning SSRF bypass'
14 Nov 2017 timeline
b'AlienVault ' disclosed a bug submitted by b'e3xpl0it' 
b'Server Side Request Forgery protection bypass ? 2'
14 Nov 2017 timeline
b'AlienVault ' disclosed a bug submitted by b'sp1d3rs' 
b'SSRF bypass for https://hackerone.com/reports/285380 (query AWS instance)'
14 Nov 2017 timeline
b'AlienVault ' disclosed a bug submitted by b'sp1d3rs' 
b'SSRF bypass #2 (using octal encoding) on the https://www.threatcrowd.org/domain.php'
14 Nov 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'gujjuboy10x00' 
b'Logic issue in email change process'
14 Nov 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'4w3' 
b'Exposes a series of other private credentials'
13 Nov 2017 timeline
b'WordPress' disclosed a bug submitted by b'slavco' 
b'WordPress DB Class, bad implementation of prepare method guides to sqli and information disclosure'
13 Nov 2017 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'twicedi' 
b'Privilege escalation in the client impersonation functionality'
13 Nov 2017 timeline
b'Automattic' disclosed a bug submitted by b'ysx' 
b'[app.simplenote.com] Stored XSS via Markdown SVG filter bypass'
12 Nov 2017 timeline
b'Slack' disclosed a bug submitted by b'cablej' 
b'Race Condition in account survey'
12 Nov 2017 timeline
b'Twitter' disclosed a bug submitted by b'csanuragjain' 
b'Opportunity to obtain private tweets through search widget preview caches'
11 Nov 2017 timeline
b'Phabricator' disclosed a bug submitted by b'pnig0s' 
b'Command injection on Phabricator instance with an evil hg branch name'
11 Nov 2017 timeline
b'New Relic' disclosed a bug submitted by b'everardo' 
b'Unvalidated redirect in alerts.newrelic.com/auth/newrelic?origin='
10 Nov 2017 timeline
b'New Relic' disclosed a bug submitted by b'guifre' 
b'SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability'
10 Nov 2017 timeline
b'New Relic' disclosed a bug submitted by b'itsaj3' 
b'Sub domain issues.'
10 Nov 2017 timeline
b'New Relic' disclosed a bug submitted by b'tsug0d' 
b'Stored XSS on BillingCountry parameter'
10 Nov 2017 timeline
b'Pornhub' disclosed a bug submitted by b'malacupa' 
b'Possibility to insert stored XSS inside <img> tag'
10 Nov 2017 timeline
b'Rockstar Games' disclosed a bug submitted by b'alexbirsan' 
b'Stored XSS on profile page via Steam display name'
10 Nov 2017 timeline
b'Shopify' disclosed a bug submitted by b'iron_fist' 
b'Self-XSS in password reset functionality'
10 Nov 2017 timeline
1 ... 520 521 522 523 524 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM