the unofficial HackerOne disclosure timeline.

X
b'Rockstar Games' disclosed a bug submitted by b'netfuzzer' 
b'XSS in http://www.rockstargames.com/theballadofgaytony/js/jquery.base.js'
17 Jul 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'haxta4ok00' 
b'????? basic ??????????? [qpt.mail.ru]'
17 Jul 2017 timeline
b'ICQ' disclosed a bug submitted by b'linkks' 
b'Apache Server-Status Detected'
17 Jul 2017 timeline
b'Mixmax' disclosed a bug submitted by b'konkakarthik' 
b'mailbomb through invite feature on chrome addon'
16 Jul 2017 timeline
b'HackerOne' disclosed a bug submitted by b'h33t' 
b'Invitation tokens leak to Google Analytics'
16 Jul 2017 timeline
b'Mixmax' disclosed a bug submitted by b'michan001' 
b'no string size restriction on team name'
16 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'goodhackonly' 
b'Missing link to 2FA recovery code'
15 Jul 2017 timeline
b'Slack' disclosed a bug submitted by b'fbogner' 
b"Code Injection in Slack's Windows Desktop Client leads to Privilege Escalation"
14 Jul 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'xyberwolf' 
b'Directory Listing In Subdomain Of nextcloud.com'
14 Jul 2017 timeline
b'WordPress' disclosed a bug submitted by b'eidelweiss' 
b'Stored self-XSS in mercantile.wordpress.org checkout'
14 Jul 2017 timeline
b'concrete5' disclosed a bug submitted by b'bl4de' 
b'Stored XSS in Headline TextControl element in Express forms [ concrete5 8.1.0 ]'
14 Jul 2017 timeline
b'ToyTalk' disclosed a bug submitted by b'saidon_1015' 
b'Host Header Injection and Cache Poisoning'
13 Jul 2017 timeline
b'Uber' disclosed a bug submitted by b'arneswinnen' 
b'Authentication bypass on auth.uber.com via subdomain takeover of saostatic.uber.com'
13 Jul 2017 timeline
b'Mapbox' disclosed a bug submitted by b'sahilsaif' 
b'Public access to objects in AWS S3 bucket'
12 Jul 2017 timeline
b'Trello' disclosed a bug submitted by b'b14ck_eye' 
b'Unpatched (https://hackerone.com/reports/221928)- Unviladate File Upload to XSS on trello-attachment Bucket'
12 Jul 2017 timeline
b'Algolia' disclosed a bug submitted by b'an0n-j' 
b'SAUCE Access_key and User_name leaked in Travis CI build logs'
12 Jul 2017 timeline
b'The Internet' disclosed a bug submitted by b'magnusstubman' 
b'ntpd: read_mru_list() does inadequate incoming packet checks'
12 Jul 2017 timeline
b'The Internet' disclosed a bug submitted by b'claudijd' 
b'Mercurial can be tricked into granting authorized users access to the Python debugger'
12 Jul 2017 timeline
b'Trello' disclosed a bug submitted by b'ajdumanhug' 
b"Cross-Site Scripting on Trello's iPhone App"
12 Jul 2017 timeline
b'Shopify' disclosed a bug submitted by b'pappan' 
b'SQL Exception thrown during product import'
12 Jul 2017 timeline
1 ... 561 562 563 564 565 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM