the unofficial HackerOne disclosure timeline.

X
b'Coinbase' disclosed a bug submitted by b'hazimaslam' 
b'Stored-XSS in https://www.coinbase.com/'
07 Dec 2015 timeline
b'itBit Exchange' disclosed a bug submitted by b'behroz' 
b'email not required to be unique'
04 Dec 2015 timeline
b'itBit Exchange' disclosed a bug submitted by b'secureashishpathak' 
b'No password length restriction denial of service'
04 Dec 2015 timeline
b'Shopify' disclosed a bug submitted by b'zombiehelp54' 
b'Non-owner user can remove online store channel and re-add it.'
03 Dec 2015 timeline
b'Binary.com' disclosed a bug submitted by b'karimrahal' 
b'Email Verification Link can be Used as Password Reset Link!'
03 Dec 2015 timeline
b'Shopify' disclosed a bug submitted by b'zombiehelp54' 
b' [CSRF] Activate PayPal Express Checkout'
03 Dec 2015 timeline
b'Shopify' disclosed a bug submitted by b'cj71f' 
b'XSS in creating tweets'
03 Dec 2015 timeline
b'Twitter' disclosed a bug submitted by b'ericr' 
b'Following a User Actually Follows Another User'
02 Dec 2015 timeline
b'HackerOne' disclosed a bug submitted by b'harisec' 
b'HTTP header injection in info.hackerone.com allows setting cookies for hackerone.com'
02 Dec 2015 timeline
b'HackerOne' disclosed a bug submitted by b'abhisheksingh' 
b'Hackerone impersonation'
02 Dec 2015 timeline
b'Twitter' disclosed a bug submitted by b'ericr' 
b'Following a User After Favoriting Actually Follows Another User (related to #95243)'
02 Dec 2015 timeline
b'HackerOne' disclosed a bug submitted by b'smiegles' 
b"profile cover can also load external URL's "
02 Dec 2015 timeline
b'HackerOne' disclosed a bug submitted by b'harshafriend4all' 
b'Limited CSRF bypass.'
02 Dec 2015 timeline
b'HackerOne' disclosed a bug submitted by b'danlec' 
b'Pre-generation of 2FA secret/backup codes seems like an unnecessary risk'
02 Dec 2015 timeline
b'Coinbase' disclosed a bug submitted by b'androm3da' 
b'iframes considered harmful'
01 Dec 2015 timeline
b'Coinbase' disclosed a bug submitted by b'paresh_parmar' 
b'OAUTH pemission set as true= lead to authorize malicious application'
01 Dec 2015 timeline
b'Mail.Ru' disclosed a bug submitted by b'bigbear_' 
b'[api.allodsteam.com] Authentication Data'
01 Dec 2015 timeline
b'Shopify' disclosed a bug submitted by b'zombiehelp54' 
b'CSV Excel Macro Injection Vulnerability in export list of current users - app.shopify.com'
01 Dec 2015 timeline
b'Shopify' disclosed a bug submitted by b'jurajk' 
b'Cookie securing your "Opening soon" store is not secured against XSS'
01 Dec 2015 timeline
b'Vimeo' disclosed a bug submitted by b'esevece' 
b'Stored XSS on vimeo.com and player.vimeo.com'
30 Nov 2015 timeline
1 ... 694 695 696 697 698 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM