the unofficial HackerOne disclosure timeline.

X
b'shopify-scripts' disclosed a bug submitted by b'icanthack' 
b'mrb_vm_exec - null ptr dereference'
13 Apr 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'mg36' 
b'Heap use-after-free in mrb_vm_exec '
13 Apr 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'charliesome' 
b'Segmentation fault when a Ruby method is invoked by a C method via Object#send'
13 Apr 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'joaomatosf' 
b'Remote Code Execution (RCE) in a DoD website'
13 Apr 2017 timeline
b'Robinhood' disclosed a bug submitted by b'jon_bottarini' 
b'Open Redirect located at https://www.robinhood.com/oauth2/authorize/?'
13 Apr 2017 timeline
b'GitLab' disclosed a bug submitted by b'chalker' 
b'Unfiltered `class` attribute in markdown code'
13 Apr 2017 timeline
b'Dovecot' disclosed a bug submitted by b'edio' 
b'Dovecot authentication is vulnerable to timing attacks.'
13 Apr 2017 timeline
b'Dropbox' disclosed a bug submitted by b'sunilj995' 
b'CSV Injection with the CVS export feature'
13 Apr 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'haxor_kids' 
b'Invalid request may lead content spoofing for phishing'
12 Apr 2017 timeline
b'VK.com' disclosed a bug submitted by b'povargek' 
b'????? 2??-??????? ??????????? / 2FA Bypass'
12 Apr 2017 timeline
b'Harvest' disclosed a bug submitted by b'jobert' 
b'Client can redirect payment, causing payment discrepancy between Harvest and PayPal'
12 Apr 2017 timeline
b'Harvest' disclosed a bug submitted by b'vijay_kumar1110' 
b'Unauthorised read Access to Expense Receipt of any user in the company(Vertical Privilege escalation)'
12 Apr 2017 timeline
b'OpenSSL (IBB)' disclosed a bug submitted by b'theyarestone' 
b'OCSP Status Request extension unbounded memory growth (CVE-2016-6304)'
12 Apr 2017 timeline
b'concrete5' disclosed a bug submitted by b'rtyler' 
b'Full Page Caching Stored XSS Vulnerability'
11 Apr 2017 timeline
b'Skyliner' disclosed a bug submitted by b'mksahilisr' 
b'Password reset Token not expiring '
11 Apr 2017 timeline
b'Informatica' disclosed a bug submitted by b'gujjuboy' 
b'[ipm.informatica.com]- Broken Authentication'
11 Apr 2017 timeline
b'Twitter' disclosed a bug submitted by b'filedescriptor' 
b'CSRF on cards API'
11 Apr 2017 timeline
b'Twitter' disclosed a bug submitted by b'filedescriptor' 
b'DOM based cookie bomb'
11 Apr 2017 timeline
b'HackerOne' disclosed a bug submitted by b'jamesclyde' 
b'javascript: and mailto: links are allowed in JIRA integration settings'
10 Apr 2017 timeline
b'HackerOne' disclosed a bug submitted by b'intidc' 
b'Example HackerOne security@ forward domain is not registered'
10 Apr 2017 timeline
1 ... 593 594 595 596 597 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM