the unofficial HackerOne disclosure timeline.

X
b'shopify-scripts' disclosed a bug submitted by b'ston3' 
b'SIGSEGV - mrb_check_intern_str() - NullPointer'
01 Mar 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'ston3' 
b'SIGSEGV on mrb_vm_exec() Null Deref'
01 Mar 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'ston3' 
b'SIGABRT, SIGSEGV mspace_free() and mrb_default_allocf()'
01 Mar 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'raydot' 
b'DoS: type confusion in mrb_no_method_error'
01 Mar 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'ston3' 
b'SIGSEGV in mrb_vm_exec'
01 Mar 2017 timeline
b'Yelp' disclosed a bug submitted by b'denispugachev' 
b'CSRF on signup endpoint (auto-api.yelp.com)'
01 Mar 2017 timeline
b'Khan Academy' disclosed a bug submitted by b'dermeister' 
b"The web app's forgot password page is vulnerable to text injection/content spoofing"
01 Mar 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'brakhane' 
b'Crash: Overwriting NoMethodError with a builtin class crashes/corrupts memory'
01 Mar 2017 timeline
b'Starbucks' disclosed a bug submitted by b'ak1t4' 
b'SAP Server - default credentials enabled'
28 Feb 2017 timeline
b'Starbucks' disclosed a bug submitted by b'kylecolson' 
b'Brute Force Attack against PIN on Card History Page Could Lead to Card Information Discovery / Fraud'
28 Feb 2017 timeline
b'Slack' disclosed a bug submitted by b'fransrosen' 
b'Stealing xoxs-tokens using weak postMessage / call-popup redirect to current team domain'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'aerodudrizzt' 
b"segafult in mruby's sprintf - mrb_str_format"
28 Feb 2017 timeline
b'Snapchat' disclosed a bug submitted by b'kontez' 
b'RTLO char allowed in chat'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'ssarong' 
b'Heap Buffer overflow in mrb_ary_unshift'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'ssarong' 
b'Use After Free in mrb_vm_exec'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'dgaletic' 
b'Incorrect code generation with redo inside NODE_RESCUE.'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'dgaletic' 
b'Recursion causing uninitialized memory reads leading to a segfault'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'ahmadsherif' 
b'A crash when an exception is caught in a caller and the receiver returned from `ensure`'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'd4nny' 
b'Denial of service (segfault) due to null pointer dereference in mrb_vm_exec'
28 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'd4nny' 
b'Denial of service (segfault) due to null pointer dereference in mrb_obj_instance_eval'
28 Feb 2017 timeline
1 ... 606 607 608 609 610 ... 768
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM