the unofficial HackerOne disclosure timeline.

X
b'Gratipay' disclosed a bug submitted by b'bugdiscloseguys' 
b'X-Content-Type Header Missing For aspen.io'
15 Jun 2017 timeline
b'Twitter' disclosed a bug submitted by b'mishre' 
b'Vine - overwrite account associated with email via android application'
14 Jun 2017 timeline
b'Adobe' disclosed a bug submitted by b'khalidamin' 
b'Parameter tampering can result in product price manipulation'
14 Jun 2017 timeline
b'Starbucks' disclosed a bug submitted by b'inhibitor181' 
b'Open redirect / Reflected XSS payload in root that affects all your sites (store.starbucks.* / shop.starbucks.* / teavana.com)'
14 Jun 2017 timeline
b'WordPress' disclosed a bug submitted by b'ysx' 
b'[mercantile.wordpress.org] Reflected XSS via AngularJS Template Injection'
14 Jun 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'shogunlab' 
b'Reflected XSS in a DoD Website'
14 Jun 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'akaki' 
b'Blind SQLi in ice.disa.mil/index.cfm'
14 Jun 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'joaomatosf' 
b'Remote Code Execution (RCE) in a DoD website'
14 Jun 2017 timeline
b'Stellar.org' disclosed a bug submitted by b'v1nsh4n' 
b'Session Cookie without HttpOnly and secure flag set'
14 Jun 2017 timeline
b'WordPress' disclosed a bug submitted by b'pabster' 
b'DOM Based XSS In mercantile.wordpress.org'
14 Jun 2017 timeline
b'YouPorn' disclosed a bug submitted by b'sp1d3rs' 
b'DOM-based XSS on youporn.com (main page)'
13 Jun 2017 timeline
b'Pornhub' disclosed a bug submitted by b'cyber-guard' 
b'Unsecured DB instance'
13 Jun 2017 timeline
b'Mixmax' disclosed a bug submitted by b'mrreboot' 
b'Missing restriction on string size of contact field'
13 Jun 2017 timeline
b'YouPorn' disclosed a bug submitted by b'cyber-guard' 
b'Account hijack via deleted PH account'
13 Jun 2017 timeline
b'Weblate' disclosed a bug submitted by b'imran_hadid' 
b'Takeover of an account via reset password options after removing the account'
13 Jun 2017 timeline
b'Stellar.org' disclosed a bug submitted by b'mrr3boot' 
b'HTTP - Basic Authentication on https://www.stellar.org/wp-login.php'
13 Jun 2017 timeline
b'QIWI' disclosed a bug submitted by b'pengenkiddy' 
b'Xss on billing'
13 Jun 2017 timeline
b'QIWI' disclosed a bug submitted by b'pengenkiddy' 
b'[XSS/pay.qiwi.com] Pay SubDomain Hard-Use XSS'
13 Jun 2017 timeline
b'Mixmax' disclosed a bug submitted by b'fixit' 
b'Attacker can trick other into logging in as themselves'
13 Jun 2017 timeline
b'Mixmax' disclosed a bug submitted by b'ashishdhaduk' 
b'Security Vulnerability - SMTP protection not used'
13 Jun 2017 timeline
1 ... 572 573 574 575 576 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM