the unofficial HackerOne disclosure timeline.

X
b'Mail.Ru' disclosed a bug submitted by b'twicedi' 
b'Reflected XSS on frag.mail.ru'
10 May 2017 timeline
b'Trello' disclosed a bug submitted by b'rajauzairabdullah' 
b'Security code not getting invalidate on requesting New'
10 May 2017 timeline
b'Maximum' disclosed a bug submitted by b'linkks' 
b'XSS'
10 May 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'sniperpex' 
b'Nextcloud Server Remote Command Execution'
10 May 2017 timeline
b'Informatica' disclosed a bug submitted by b'yarbabin' 
b' XXE in upload file feature'
10 May 2017 timeline
b'Informatica' disclosed a bug submitted by b'gorkha' 
b'[careers.informatica.com] Cross Site Script Vulnerability on informatica'
10 May 2017 timeline
b'Mavenlink' disclosed a bug submitted by b'chols' 
b'Tabnabbing via Window.Opener @Mavenlink'
09 May 2017 timeline
b'GitLab' disclosed a bug submitted by b'edio' 
b'Gitlab.com is vulnerable to reverse tabnabbing. (#2)'
09 May 2017 timeline
b'GitLab' disclosed a bug submitted by b'edio' 
b'Gitlab.com is vulnerable to reverse tabnabbing via AsciiDoc links. (#3)'
09 May 2017 timeline
b'Mavenlink' disclosed a bug submitted by b'rajauzairabdullah' 
b'Cookies are not cleared from Server side on Logout'
09 May 2017 timeline
b'GitLab' disclosed a bug submitted by b'jobert' 
b'Stored XSS on Files overview by abusing git submodule URL'
09 May 2017 timeline
b'Harvest' disclosed a bug submitted by b'ysx' 
b'[platform.harvestapp.com] Reflected XSS in Error Message via URL parameters'
09 May 2017 timeline
b'Gratipay' disclosed a bug submitted by b'7h0r4pp4n' 
b'Unauthorized access to the slack channel via inside.gratipay.com/appendices/chat'
09 May 2017 timeline
b'VK.com' disclosed a bug submitted by b'povargek' 
b'?????? ?????? ?????? 2FA'
09 May 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'geeknik' 
b'heap-buffer-overflow (read outside of buffer) in mrb_vm_exec()'
09 May 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'geeknik' 
b'mirb only: stack-buffer-overflow (OOB write) in main()'
09 May 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'makosdel' 
b'Limitation of app specific password scope can be bypassed (NC-SA-2017-009)'
08 May 2017 timeline
b'Twitter' disclosed a bug submitted by b'ysx' 
b'[Gnip Blogs] Reflected XSS via "plupload.flash.swf" component vulnerable to SOME '
08 May 2017 timeline
b'Twitter' disclosed a bug submitted by b'zlz' 
b'HTTP 401 response injection on "amp.twimg.com/amplify-web-player/prod/source.html" through "image_src" parameter'
08 May 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'juliushaertl' 
b'Calendar and addressbook names disclosed (NC-SA-2017-012)'
08 May 2017 timeline
1 ... 586 587 588 589 590 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM