the unofficial HackerOne disclosure timeline.

X
b'Yelp' disclosed a bug submitted by b'us111' 
b'Research papers on yelp are getting indexed by google bots.'
09 Nov 2017 timeline
b'Yelp' disclosed a bug submitted by b'us111' 
b'One of yelp.com url is redirecting to domain which is not yet purchased'
09 Nov 2017 timeline
b'Yelp' disclosed a bug submitted by b'na5ne3t' 
b'User can be fooled to Bookmark any restaurant by clickjacking'
09 Nov 2017 timeline
b'Yelp' disclosed a bug submitted by b'mohammad_obaid' 
b'ClickJacking in editing business name'
09 Nov 2017 timeline
b'Yelp' disclosed a bug submitted by b'hk755a' 
b'IDNs displayed in unicode in messages/about/talk sections (Homograph Attack)'
09 Nov 2017 timeline
b'Yelp' disclosed a bug submitted by b'hk755a' 
b'Password reset token not expiring'
09 Nov 2017 timeline
b'HackerOne' disclosed a bug submitted by b'edio' 
b'Blind SSRF in "Integrations" by abusing a bug in Ruby\'s native resolver.'
09 Nov 2017 timeline
b'GitLab' disclosed a bug submitted by b'edio' 
b'SSRF vulnerability in gitlab.com via project import.'
09 Nov 2017 timeline
b'Aspen' disclosed a bug submitted by b'abartan' 
b'Email Spoofing'
09 Nov 2017 timeline
b'Automattic' disclosed a bug submitted by b'arafat' 
b'Invalidate session after password reset on https://polldaddy.com'
09 Nov 2017 timeline
b'Infogram' disclosed a bug submitted by b'romanshyadav' 
b'A10 \xe2\x80\x93 Unvalidated Redirects and Forwards'
09 Nov 2017 timeline
b'RubyGems' disclosed a bug submitted by b'max' 
b'Remote code execution on rubygems.org'
09 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'edio' 
b'Authenticated DOM-based XSS in deals.razerzone.com via the rurl parameter.'
08 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'sp1d3rs' 
b'Open redirect on oauth2.razerzone.com due to missing verification of redirect-uri paramether on /thirdparty endpoint'
08 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'sp1d3rs' 
b'Reflected XSS on the https://deals.razerzone.com/json/translation endpoint'
08 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'utkarsh123456' 
b'XSS vulnerability on amp.razerzone.com'
08 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'edio' 
b'Unauthenticated DOM-based XSS in zvault.razerzone.com via the redir parameter.'
08 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'edio' 
b'Reflected XSS in deals.razerzone.com via the interesting parameter.'
08 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'utkarsh1' 
b'[amp.razerzone.com] SQL injection via resource_type parameter '
08 Nov 2017 timeline
b'Razer US' disclosed a bug submitted by b'edio' 
b'Unauthenticated DOM-based XSS in pay.zvault.razerzone.com via the redir parameter.'
08 Nov 2017 timeline
1 ... 522 523 524 525 526 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM