the unofficial HackerOne disclosure timeline.

X
b'Nextcloud' disclosed a bug submitted by b'dr-cdqh' 
b'Cross Site Scripting'
26 Apr 2017 timeline
b'Homebrew' disclosed a bug submitted by b'zephrfish' 
b'[bot.brew.sh] Full Path Disclosure'
26 Apr 2017 timeline
b'Phabricator' disclosed a bug submitted by b'wester' 
b'The mailbox verification API interface is unlimited and can be used as a mailbox bomb'
26 Apr 2017 timeline
b'Mapbox' disclosed a bug submitted by b'saad_ahmed' 
b'Open Aws Amazon S3 Buckets'
25 Apr 2017 timeline
b'Homebrew' disclosed a bug submitted by b'mrr3boot' 
b'Sensitive information disclosure via response headers on jenkins.brew.sh'
25 Apr 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'abdul1ah' 
b'information disclose'
25 Apr 2017 timeline
b'HackerOne' disclosed a bug submitted by b'ishahriyar' 
b'Able to create basic user account via Google login on HackerOne Drupal CMS'
25 Apr 2017 timeline
b'Weblate' disclosed a bug submitted by b'mrr3boot' 
b'https://hosted.weblate.org is vulnerable to Beast Attack'
24 Apr 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'wester' 
b'The email API to test email-server settings is unlimited and can be used as a email bomb'
24 Apr 2017 timeline
b'Algolia' disclosed a bug submitted by b'ysx' 
b'[GitHub Extension] Unsanitised HTML leading to XSS on GitHub.com'
24 Apr 2017 timeline
b'Phabricator' disclosed a bug submitted by b'almanac' 
b'Autoclose can close any task regardless of policies/spaces'
24 Apr 2017 timeline
b'VK.com' disclosed a bug submitted by b'f4lrik' 
b'SSRF ????? Share-?????'
22 Apr 2017 timeline
b'VK.com' disclosed a bug submitted by b'shady-r' 
b'?????: "??????????? ?????????? ??? ????????????? ? ????? ???????."'
22 Apr 2017 timeline
b'YouPorn' disclosed a bug submitted by b'lisa122' 
b'[Android API] SQL injection ( errortoken.json )'
22 Apr 2017 timeline
b'Phabricator' disclosed a bug submitted by b'wester' 
b'The special code in editor has no Authority control and can lead to Information Disclosure'
22 Apr 2017 timeline
b'Slack' disclosed a bug submitted by b'a1kmm-' 
b'Bypass to postMessage origin validation via FTP'
21 Apr 2017 timeline
b'Phabricator' disclosed a bug submitted by b'luke081515' 
b'IRC-Bot exposes information'
21 Apr 2017 timeline
b'Pornhub' disclosed a bug submitted by b'sp1d3rs' 
b'Blind Stored XSS against Pornhub employees using Amateur Model Program'
21 Apr 2017 timeline
b'Informatica' disclosed a bug submitted by b'fillawful' 
b'[marketplace.informatica.com]- Stored XSS on Image title and Edit Property'
21 Apr 2017 timeline
b'ownCloud' disclosed a bug submitted by b'hanno' 
b'bug reporting template encourages users to paste config file with passwords'
21 Apr 2017 timeline
1 ... 590 591 592 593 594 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM