the unofficial HackerOne disclosure timeline.

X
b'Tor' disclosed a bug submitted by b'guido' 
b'[tor] control connection pre-auth DoS (infinite loop) with --enable-bufferevents'
19 Oct 2017 timeline
b'Tor' disclosed a bug submitted by b'guido' 
b'potential memory corruption in or/buffers.c (particularly on 32 bit)'
19 Oct 2017 timeline
b'Tor' disclosed a bug submitted by b'guido' 
b'Overreads/overcopies in torsocks'
19 Oct 2017 timeline
b'Inflection' disclosed a bug submitted by b'raghavendra' 
b'No password confirmation on changing primary email address'
18 Oct 2017 timeline
b'Gratipay' disclosed a bug submitted by b'myster' 
b'Broken link for stale DNS entry may be leveraged for Phishing, Misinformation, Serving Malware'
18 Oct 2017 timeline
b'GitLab' disclosed a bug submitted by b'ysx' 
b'[Markdown] Stored XSS via character encoding parser bypass'
18 Oct 2017 timeline
b'Lyst' disclosed a bug submitted by b'tripwire' 
b'SSRF at iris.lystit.com'
18 Oct 2017 timeline
b'Vimeo' disclosed a bug submitted by b'opnsec' 
b'Watch any Password Video without password'
18 Oct 2017 timeline
b'Vimeo' disclosed a bug submitted by b'opnsec' 
b'OAuth 2 Authorization Bypass via CSRF and Cross Site Flashing'
18 Oct 2017 timeline
b'Vimeo' disclosed a bug submitted by b'opnsec' 
b'Images and Subtitles Leakage from private videos'
18 Oct 2017 timeline
b'CodeIgniter' disclosed a bug submitted by b'hackerneo' 
b'If the developer forgets to remove the built in controller welcome.php it helps the attacker to identify that the site is built with Codeigniter'
18 Oct 2017 timeline
b'QIWI' disclosed a bug submitted by b'pengenkiddy' 
b'[qiwi.com] XSS on payment form'
17 Oct 2017 timeline
b'Inflection' disclosed a bug submitted by b'malcolmx' 
b'Open Redirect through POST Request'
16 Oct 2017 timeline
b'HackerOne' disclosed a bug submitted by b'hk755a' 
b'Homograph fix Bypass '
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'agarri_fr' 
b'SSRF issue in "URL target" allows [REDACTED]'
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'agarri_fr' 
b'Remote code execution as root on [REDACTED]'
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'zombiehelp54' 
b'open redirect in <your_zendesk>.zendesk.com'
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'harry_mg' 
b'Stored XSS in Draft Articles. '
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'boniao_norwin' 
b'Unvalidated / Open Redirect'
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'cablej' 
b'Race Condition in Article "Helpful" Indicator'
16 Oct 2017 timeline
1 ... 531 532 533 534 535 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM