the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'prem1807' 
b'XSS on manually entering Postal codes'
17 Dec 2016 timeline
b'Shopify' disclosed a bug submitted by b'dhaval' 
b'Misconfiguration in Two Factor Authorisation'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'jpenalbae' 
b'NULL pointer dereference when parsing ternary operators'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'jpenalbae' 
b'SIGSEGV when invalid argument on remove_method'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'jpenalbae' 
b'SIGSEV on mrb_ary_splice'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'jpenalbae' 
b'SIGSEGV on mruby mrb_str_modify() (Invalid memory access)'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'jpenalbae' 
b"SIGSEGV on mruby's mark_tbl() (Invalid memory access)"
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'charliesome' 
b'Range#initialize_copy null pointer dereference'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'charliesome' 
b'Undefined method_missing null pointer dereference'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'charliesome' 
b'Struct type confusion RCE'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'charliesome' 
b'Range constructor type confusion DoS'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'charliesome' 
b'Null target_class DoS'
17 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'brakhane' 
b"Crash: mrb_any_to_s can't handle NilClass, Symbol and Fixnum"
16 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'brakhane' 
b'Crash: A call to Symbol.new leads to a crash when inspecting the resulting object'
16 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'brakhane' 
b'mruby-time: Crash host with uninitialized Time obj'
16 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'brakhane' 
b'Crash: calling Proc::initialize_copy with a Proc instance where initialize never ran leads to a crash'
16 Dec 2016 timeline
b'Shopify' disclosed a bug submitted by b'zuh4n' 
b"Stored XSS at 'Buy Button' page"
16 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'dkasak' 
b'Segfault in mruby, mruby_engine and the parent MRI Ruby due to null pointer dereference'
16 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'dkasak' 
b'Segfault and/or potential unwanted (byte)code execution with "break" and "||=" inside a loop'
16 Dec 2016 timeline
b'shopify-scripts' disclosed a bug submitted by b'raydot' 
b'TOCTTOU bug in mrb_str_setbyte leading the memory corruption'
16 Dec 2016 timeline
1 ... 621 622 623 624 625 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM