the unofficial HackerOne disclosure timeline.

X
b'shopify-scripts' disclosed a bug submitted by b'eboda' 
b'Null pointer dereference in mrb_random_initialize'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'tunz' 
b'Crash in print_backtrace'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'tunz' 
b'Still heap overflow in mrb_ary_splice'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'tunz' 
b'Null pointer dereference in mrb_str_prepend'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'marotagem_vrt' 
b'Null pointer dereference in mrb_str_modify'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'titanous' 
b'Double free of filename after codegen error'
07 Feb 2017 timeline
b'Shopify' disclosed a bug submitted by b'zombiehelp54' 
b'apps.shopify.com - CSRF token leakage through Google Analytics'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'geeknik' 
b'attempting double-free using the mruby compiler `mrbc`'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'titanous' 
b'Heap use-after-free during range creation'
07 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'titanous' 
b'Heap overflow due to off-by-one when expanding stack'
07 Feb 2017 timeline
b'Yelp' disclosed a bug submitted by b'tk0' 
b'X.509 certificate validation fails on international vanity domains'
06 Feb 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'marotagem_vrt' 
b'mrb_str_modify try to write to memory not marked for writing'
06 Feb 2017 timeline
b'Twitter' disclosed a bug submitted by b'mishre' 
b'Clickjacking Periscope.tv on Chrome'
06 Feb 2017 timeline
b'Pornhub' disclosed a bug submitted by b'mr_47' 
b'Wordpress Content injection '
06 Feb 2017 timeline
b'Pornhub' disclosed a bug submitted by b'mr_47' 
b'Debug.log file Exposed to Public \\Full Path Disclosure\\'
06 Feb 2017 timeline
b'Badoo' disclosed a bug submitted by b'tikoo_sahil' 
b'CSRF Attack on (m.badoo.com)deleting account and erasing imported contacts'
06 Feb 2017 timeline
b'Phabricator' disclosed a bug submitted by b'denispugachev' 
b'Restricted file access when it exists in old versions of task or wiki document'
06 Feb 2017 timeline
b'Phabricator' disclosed a bug submitted by b'denispugachev' 
b'Enumerating emails through "Forgot Password" form'
06 Feb 2017 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'dem0n1212' 
b'Subdomain Takeover (moderator.ubnt.com)'
06 Feb 2017 timeline
b'Yelp' disclosed a bug submitted by b'jazzy17' 
b'Able to download arbitrary PHP files at yelpblog.com'
06 Feb 2017 timeline
1 ... 613 614 615 616 617 ... 768
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM