the unofficial HackerOne disclosure timeline.

X
b'HackerOne' disclosed a bug submitted by b'deepankerchawla' 
b'Information Disclosure in /skills call'
05 Jan 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'an0n-j' 
b'Deleting Key-value pair from Frozen HASH or Clearing a Frozen HASH'
05 Jan 2017 timeline
b'Udemy' disclosed a bug submitted by b'csanuragjain' 
b'Udemy s3 storage can be used by an attacker personal website because of missing CSRF Token'
05 Jan 2017 timeline
b'Udemy' disclosed a bug submitted by b'gribdan' 
b'AWS S3 bucket writable for authenticated aws user'
05 Jan 2017 timeline
b'Slack' disclosed a bug submitted by b'michiel' 
b'Subdomain takeover on podcasts.slack-core.com'
04 Jan 2017 timeline
b'Snapchat' disclosed a bug submitted by b's_p_q_r' 
b'[render.bitstrips.com] Stored XSS via an incorrect avatar property value'
04 Jan 2017 timeline
b'Slack' disclosed a bug submitted by b'imran_hadid' 
b'Store XSS'
01 Jan 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'lukasreschke' 
b'Files Drop: WebDAV endpoint is leaking existence of resources'
01 Jan 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'top' 
b'Server version disclosure'
31 Dec 2016 timeline
b'Legal Robot' disclosed a bug submitted by b'nullelite' 
b' No DMARC Record in legalrobot-uat.com'
31 Dec 2016 timeline
b'InVision' disclosed a bug submitted by b'nhavis' 
b'CORS Man-in-the-Middle account compromise'
31 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'zephrfish' 
b'[careers.informatica.com] Reflected Cross Site Scripting to XSS Shell Possible'
31 Dec 2016 timeline
b'OpenSSL (IBB)' disclosed a bug submitted by b'guido' 
b'Double-free in X509 parsing'
30 Dec 2016 timeline
b'OpenSSL (IBB)' disclosed a bug submitted by b'guido' 
b'Remote client memory corruption in ssl_add_clienthello_tlsext()'
30 Dec 2016 timeline
b'Gratipay' disclosed a bug submitted by b'akash_9021' 
b'Username can be used to trick the victim on the name of www.gratipay.com'
30 Dec 2016 timeline
b'Gratipay' disclosed a bug submitted by b'akash_9021' 
b'Username Restriction is not applied for reserved folders'
30 Dec 2016 timeline
b'Ian Dunn' disclosed a bug submitted by b'e3amn2l' 
b'unchecked unserialize usages in audit-trail-extension/audit-trail-extension.php'
30 Dec 2016 timeline
b'Ian Dunn' disclosed a bug submitted by b'e3amn2l' 
b'constant cache_page_secret in regolith'
30 Dec 2016 timeline
b'Gratipay' disclosed a bug submitted by b'aa23' 
b'Session Fixation At Logout /Session Misconfiguration'
29 Dec 2016 timeline
b'Gratipay' disclosed a bug submitted by b'dr-cdqh' 
b'Secure Pages Include Mixed Content'
29 Dec 2016 timeline
1 ... 620 621 622 623 624 ... 768
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM