the unofficial HackerOne disclosure timeline.

X
b'Gratipay' disclosed a bug submitted by b'hunter012' 
b'This is a test report'
11 Jul 2017 timeline
b'Mapbox' disclosed a bug submitted by b'geeknik' 
b'null pointer dereference and segfault in tile-count-merge'
11 Jul 2017 timeline
b'Mapbox' disclosed a bug submitted by b'apapedulimu' 
b'Node modules path disclosure due to lack of error handling'
11 Jul 2017 timeline
b'Apache httpd (IBB)' disclosed a bug submitted by b'regilero' 
b'Apache HTTP Request Parsing Whitespace Defects'
11 Jul 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'lincoln9932' 
b'XSS ? ?????????? ?????????'
11 Jul 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'haxta4ok00' 
b'By pass admin panel [conference.mail.ru]'
11 Jul 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'haxta4ok00' 
b'By pass admin panel [seminars.mail.ru]'
11 Jul 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'haxta4ok00' 
b'Admin panel access restrictions bypass [poll.mail.ru/admin/]'
11 Jul 2017 timeline
b'Gratipay' disclosed a bug submitted by b'khanshaheb' 
b'SQL TEST'
11 Jul 2017 timeline
b'Twitter' disclosed a bug submitted by b'r3ligious-hunt3r' 
b'Vine all registered user Private/sensitive information disclosure .[ Ip address/phone no/email and many other informations ]'
11 Jul 2017 timeline
b'Trello' disclosed a bug submitted by b'csanuragjain' 
b'Malicious file can be hidden as Card Attachment or Card Cover image'
10 Jul 2017 timeline
b'Pornhub' disclosed a bug submitted by b'ilsani' 
b'Reflected XSS on ht.pornhub.com - /export/GetPreview'
10 Jul 2017 timeline
b'Pornhub' disclosed a bug submitted by b'ramsexy' 
b'http://ht.pornhub.com/ stored XSS in widget stylesheet'
10 Jul 2017 timeline
b'Yelp' disclosed a bug submitted by b'edio' 
b"Firefly's verify_access_token() function does a byte-by-byte comparison of HMAC values."
10 Jul 2017 timeline
b'Pornhub' disclosed a bug submitted by b'kenziy' 
b'pornhub.com/user/welcome/basicinfo nickname field is vulnerable on xss'
10 Jul 2017 timeline
b'WakaTime' disclosed a bug submitted by b'abhiram' 
b'by pass rate limit exceed '
10 Jul 2017 timeline
b'Gratipay' disclosed a bug submitted by b'karthic' 
b'Usernames ending in .json are not restricted'
10 Jul 2017 timeline
b'Gratipay' disclosed a bug submitted by b'karthic' 
b'x-xss protection header is not set in response header'
10 Jul 2017 timeline
b'Gratipay' disclosed a bug submitted by b'yodha' 
b'Lack of CSRF token validation at server side'
10 Jul 2017 timeline
b'Gratipay' disclosed a bug submitted by b'd4rk_g1rl' 
b'CSP "script-src" includes "unsafe-inline" in https://gratipay.com'
10 Jul 2017 timeline
1 ... 562 563 564 565 566 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM