the unofficial HackerOne disclosure timeline.

X
b'Boozt Fashion AB' disclosed a bug submitted by b'niko00' 
b'booztfashion.com URL should HTTPS'
18 Sep 2017 timeline
b'Tor' disclosed a bug submitted by b'janu123' 
b'Sql query disclosure,'
18 Sep 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'betterknowme' 
b'UX: JS error on Password Safety link'
17 Sep 2017 timeline
b'Automattic' disclosed a bug submitted by b'isaeva' 
b'https://secure.gravatar.com'
17 Sep 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'd4rk_g1rl' 
b'Homograph IDNs displayed in Description'
16 Sep 2017 timeline
b'Yelp' disclosed a bug submitted by b'coder13' 
b'Verification of email addresses possible through https://www.yelp.com/signup/facebook'
16 Sep 2017 timeline
b'Weblate' disclosed a bug submitted by b'kaamakya' 
b'DKIM records not present, Email Hijacking is possible.....'
16 Sep 2017 timeline
b'Weblate' disclosed a bug submitted by b'alyanwarr' 
b'Missing Restriction On String Size'
16 Sep 2017 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'sp1d3rs' 
b'Information disclosure (system username) in the x-amz-meta-s3cmd-attrs response header on federation.data.gov'
16 Sep 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'babayaga_' 
b'IDOR unsubscribe Anyone from NextClouds Newsletters by knowing their Email '
16 Sep 2017 timeline
b'Perl (IBB)' disclosed a bug submitted by b'mipu94' 
b'Use-after-free in XML::LibXML::Node::replaceChild'
16 Sep 2017 timeline
b'Automattic' disclosed a bug submitted by b'slavco' 
b'woocommerce - prevent_caching() bug / bypass'
16 Sep 2017 timeline
b'Cuvva' disclosed a bug submitted by b'leet-boy' 
b"Insecure Direct Object Reference (IDOR) Allowing me to claim other user's photos (driving license and selfies) as mine"
15 Sep 2017 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'sp1d3rs' 
b'Reflected XSS on the data.gov (WAF bypass+ Chrome XSS Auditor bypass+ works in all browsers)'
15 Sep 2017 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'sp1d3rs' 
b'HTML injection (with XSS possible) on the https://www.data.gov/issue/ using media_url attribute'
15 Sep 2017 timeline
b'Automattic' disclosed a bug submitted by b'slavco' 
b'Unauthenticated RCE in Vaultpress'
15 Sep 2017 timeline
b'Ruby' disclosed a bug submitted by b'mame' 
b'Escape sequence injection vulnerability in WEBrick BasicAuth'
15 Sep 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'hulskr' 
b'Profile fields validation mismatch'
15 Sep 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'd4rk_g1rl' 
b'Futureoflife organization URL should be HTTPS'
15 Sep 2017 timeline
b'Weblate' disclosed a bug submitted by b'alyanwarr' 
b'No rate limit or captcha to identify humans'
15 Sep 2017 timeline
1 ... 539 540 541 542 543 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM