the unofficial HackerOne disclosure timeline.

X
b'Nextcloud' disclosed a bug submitted by b'trichimtrich' 
b'Bad content-type in response header when getting document can lead to html injection'
12 Jan 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'trichimtrich' 
b'URI scheme bypass in mail app lead to HTML content spoof and opener control'
12 Jan 2017 timeline
b'OLX' disclosed a bug submitted by b'mohamedsherif' 
b'Directory Listing of all the resource files of olx.com.eg '
12 Jan 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'vishnu1' 
b'Near-duplicate accounts allowed with ignored email mutations'
12 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'meals' 
b'Remote code execution on an Army website'
12 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'juliocesar' 
b'Reflected XSS on a Department of Defense website'
12 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'juliocesar' 
b'Reflected XSS on a Department of Defense website'
12 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'juliocesar' 
b'DOM Based XSS on an Army website'
12 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'juliocesar' 
b'Reflected XSS on an Army website'
12 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'korprit' 
b'Information leakage on a Department of Defense website'
12 Jan 2017 timeline
b'StopTheHacker' disclosed a bug submitted by b'strutsonsecurity' 
b'Wordpress flashmediaelement.swf XSS on stopthehacker.com '
12 Jan 2017 timeline
b'Harvest' disclosed a bug submitted by b'bugdiscloseguys' 
b'Linking Invoice to uninvited project.'
12 Jan 2017 timeline
b'Harvest' disclosed a bug submitted by b'bugdiscloseguys' 
b'Extracting private info of estimates.'
12 Jan 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'tunz' 
b'Integer Overflow in mrb_ary_set'
12 Jan 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'tunz' 
b'Heap Overflow in mrb_arb_splice'
12 Jan 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'dkasak' 
b'Invalid handling of zero-length heredoc identifiers leads to infinite loop in the sandbox'
12 Jan 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'dkasak' 
b'Incorrect code generation when result of NODE_NEGATE is not used'
12 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'spam404' 
b'XSS vulnerability on an Army website'
11 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'ddworken' 
b'Publicly accessible logs of user information'
11 Jan 2017 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'korprit' 
b'SQL Injection vulnerability on a DoD website'
11 Jan 2017 timeline
1 ... 615 616 617 618 619 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM