the unofficial HackerOne disclosure timeline.

X
b'LocalTapiola' disclosed a bug submitted by b'shailesh4594' 
b'Open redirection protection bypass (/cs/Satellite)'
10 Dec 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'th3g3nt3lman' 
b'XSS and open redirect in verkkopalvelu.lahitapiola.fi'
10 Dec 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'bobrov' 
b'HTML Injection in email /webApp/lahti (viestinta.lahitapiola.fi)'
10 Dec 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'billy_blaze' 
b'Lahitapiola\xc2\xb4s customer names send to 3rd party'
10 Dec 2016 timeline
b'Twitter' disclosed a bug submitted by b'linkks' 
b' Cross-site scripting (reflected)'
09 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'robd4k' 
b'[now.informatica.com] Reflective XSS'
09 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'yarbabin' 
b'[marketplace.informatica.com] - XXE'
09 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'yarbabin' 
b'[marketplace.informatica.com] - XXE'
09 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'yarbabin' 
b'[rev-app.informatica.com] - XXE via SAML'
09 Dec 2016 timeline
b'Envoy' disclosed a bug submitted by b'zephrfish' 
b'Abuse of API can Lead to DoS'
08 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'zephrfish' 
b'[product360.informatica.com] Unauthenticated Apache Tomcat 8 Installation'
08 Dec 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'bobrov' 
b'SQL Injection /webApp/sijoitustalous_peruutus locId parameter (viestinta.lahitapiola.fi)'
08 Dec 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'bobrov' 
b'SQL Injection /webApp/oma_conf ctx parameter (viestinta.lahitapiola.fi)'
08 Dec 2016 timeline
b'HackerOne' disclosed a bug submitted by b'zseano' 
b'Bypass rate limiting on /users/password (possibly site-wide rate limit bypass?)'
08 Dec 2016 timeline
b'OLX' disclosed a bug submitted by b'123456789100' 
b'REFLECTED CROSS SITE SCRIPTING IN OLX'
08 Dec 2016 timeline
b'Gratipay' disclosed a bug submitted by b'promx' 
b'CSRF csrftoken in cookies'
07 Dec 2016 timeline
b'Instacart' disclosed a bug submitted by b'archers123' 
b'User Information sent to client through websockets'
07 Dec 2016 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'jelmer' 
b'JSBeautifier BApp: Race condition leads to memory disclosure'
07 Dec 2016 timeline
b'Trello' disclosed a bug submitted by b'esmile' 
b'SVG Uploads / Attachments can be viewed by anyone. '
06 Dec 2016 timeline
b'GitLab' disclosed a bug submitted by b'fransrosen' 
b'Mailgun misconfiguration leads to email snooping and postmaster@-access on email.mg.gitlab.com'
06 Dec 2016 timeline
1 ... 623 624 625 626 627 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM