the unofficial HackerOne disclosure timeline.

X
b'HackerOne' disclosed a bug submitted by b'anshuman_bh' 
b'Sending emails (via HackerOne) impersonating other users'
18 Mar 2016 timeline
b'Automattic' disclosed a bug submitted by b'voodookobra' 
b'Possible Timing Side-Channel in XMLRPC Verification'
17 Mar 2016 timeline
b'Veris' disclosed a bug submitted by b'yaworsk' 
b'Not Using Secure Flag Option on Cookies Could Lead to a Man in the Middle Session Highjacking'
17 Mar 2016 timeline
b'HackerOne' disclosed a bug submitted by b'charfe' 
b'Private program activity timeline information disclosure'
16 Mar 2016 timeline
b'Gratipay' disclosed a bug submitted by b'kira_evil' 
b'The POODLE attack (SSLv3 supported) for https://grtp.co/'
16 Mar 2016 timeline
b'Shopify' disclosed a bug submitted by b'sergeym' 
b'xss in the all widgets of shopifyapps.com'
16 Mar 2016 timeline
b'Gratipay' disclosed a bug submitted by b'shahzaib-shani' 
b'SPF DNS Record '
15 Mar 2016 timeline
b'Mail.Ru' disclosed a bug submitted by b'konqi' 
b'[orsotenslimselfie.lady.mail.ru] SQL Injection'
15 Mar 2016 timeline
b'Badoo' disclosed a bug submitted by b'darshitvarotaria' 
b'Broken Authentication on Badoo'
15 Mar 2016 timeline
b'Shopify' disclosed a bug submitted by b'niyaax' 
b'Stored XSS in https://checkout.shopify.com/'
15 Mar 2016 timeline
b'HackerOne' disclosed a bug submitted by b'rohk' 
b'Edit Auto Response Messages'
15 Mar 2016 timeline
b'ownCloud' disclosed a bug submitted by b'gorang_joshi' 
b'owncloud.com: Parameter pollution in social sharing buttons'
14 Mar 2016 timeline
b'Imgur' disclosed a bug submitted by b'aesteral' 
b'SSRF / Local file enumeration / DoS due to improper handling of certain file formats by ffmpeg'
14 Mar 2016 timeline
b'Ruby on Rails' disclosed a bug submitted by b'benmmurphy' 
b'Data-Tags and the New HTML Sanitizer Subverts CSRF protection'
13 Mar 2016 timeline
b'Ruby on Rails' disclosed a bug submitted by b'garnu' 
b'Potential XSS on sanitize/Rails::Html::WhiteListSanitizer'
13 Mar 2016 timeline
b'Ruby on Rails' disclosed a bug submitted by b'arthurnn' 
b'[Rails42] We can inject HTML tags when server is using strip_tags method'
13 Mar 2016 timeline
b'Ruby on Rails' disclosed a bug submitted by b'tenderlove' 
b'DoS Attack in Controller Lookup Code'
13 Mar 2016 timeline
b'Ruby on Rails' disclosed a bug submitted by b'd_w' 
b'http_basic_authenticate_with is suseptible to timing attacks.'
13 Mar 2016 timeline
b'Shopify' disclosed a bug submitted by b'hussein98d' 
b'Strored Cross Site Scripting'
13 Mar 2016 timeline
b'Zomato' disclosed a bug submitted by b'mugeesahmed' 
b'Weak Password Policy'
13 Mar 2016 timeline
1 ... 687 688 689 690 691 ... 768
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM