the unofficial HackerOne disclosure timeline.

X
b'Rockstar Games' disclosed a bug submitted by b'netfuzzer' 
b'flash injection in http://www.rockstargames.com/IV/imgPlayer/imageEmbed.swf'
25 Aug 2017 timeline
b'Algolia' disclosed a bug submitted by b'sh3r1' 
b'Text injection on status.algolia.com'
25 Aug 2017 timeline
b'Gratipay' disclosed a bug submitted by b'tungpun' 
b'Reflected XSS - gratipay.com'
24 Aug 2017 timeline
b'Rockstar Games' disclosed a bug submitted by b'netfuzzer' 
b'dom based xss in http://www.rockstargames.com/GTAOnline/ (Fix bypass)'
24 Aug 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'darkag29' 
b'Change password session fixed'
24 Aug 2017 timeline
b'Parrot Sec' disclosed a bug submitted by b'lalka' 
b'XSS on http://irc.parrotsec.org'
24 Aug 2017 timeline
b'Zomato' disclosed a bug submitted by b'nbsp' 
b'Restaurant paiement information leaking (Including Bank Account Number etc...) on https://www.zomato.com/admin/zach/handler.php'
24 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'dolph1n' 
b'[debian.weblate.org]-Missing SPF Record'
24 Aug 2017 timeline
b'Gratipay' disclosed a bug submitted by b'nuii' 
b'Gratipay rails secret token (secret_key_base) publicly exposed in GitHub'
23 Aug 2017 timeline
b'Shopify' disclosed a bug submitted by b'dhaval' 
b'Setting Arbitrary Cookie at kitcrm.com'
23 Aug 2017 timeline
b'Pornhub' disclosed a bug submitted by b'rahulztez' 
b'Private videos can be added to our playlists'
23 Aug 2017 timeline
b'Unikrn' disclosed a bug submitted by b'sp1d3rs' 
b'Escaping images directory in S3 bucket when saving new avatar, using Path Traversal in filename'
23 Aug 2017 timeline
b'Unikrn' disclosed a bug submitted by b'coreyd97' 
b'HTML injection in email in unikrn.com'
23 Aug 2017 timeline
b'Coinbase' disclosed a bug submitted by b'paulos_' 
b'XSSI (Cross Site Script Inclusion)'
22 Aug 2017 timeline
b'WordPress' disclosed a bug submitted by b'mopman' 
b'[Buddypress] Arbitrary File Deletion through bp_avatar_set'
22 Aug 2017 timeline
b'New Relic' disclosed a bug submitted by b'albinowax' 
b'SSRF in alerts.newrelic.com exposes entire internal network'
22 Aug 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'f4lrik' 
b'???????? ????? ??? ??????????? ????? ????????? mail.ru'
22 Aug 2017 timeline
b'Automattic' disclosed a bug submitted by b'ramuelgall' 
b'XSS Vulnerability in WooCommerce Product Vendors plugin'
22 Aug 2017 timeline
b'Tor' disclosed a bug submitted by b'bagipro' 
b'[Android org.torproject.android] Possible to force list of bridges'
21 Aug 2017 timeline
b'Gratipay' disclosed a bug submitted by b'behzad900' 
b'xss '
21 Aug 2017 timeline
1 ... 546 547 548 549 550 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM