the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'mdv' 
b'XSS https://www.shopify.com/signup'
31 Aug 2015 timeline
b'Flox' disclosed a bug submitted by b'pradeepch99' 
b'Content spoofing through Referel header'
29 Aug 2015 timeline
b'Keybase' disclosed a bug submitted by b'mafia' 
b'NO SPF RECORDS '
28 Aug 2015 timeline
b'Keybase' disclosed a bug submitted by b'mom' 
b'SMTP protection not used'
28 Aug 2015 timeline
b'Phabricator' disclosed a bug submitted by b'jbeta' 
b'Dashboard panel embedded onto itself causes a denial of service'
27 Aug 2015 timeline
b'concrete5' disclosed a bug submitted by b'jmpalk' 
b'No csrf protection on index.php/ccm/system/user/add_group, index.php/ccm/system/user/remove_group'
26 Aug 2015 timeline
b'concrete5' disclosed a bug submitted by b'jmpalk' 
b'No CSRF protection when creating new community points actions, and related stored XSS'
26 Aug 2015 timeline
b'DigitalSellz' disclosed a bug submitted by b's_p_q_r' 
b'The email updates issues'
25 Aug 2015 timeline
b'DigitalSellz' disclosed a bug submitted by b's_p_q_r' 
b'The product/status method CSRF'
25 Aug 2015 timeline
b'Shopify' disclosed a bug submitted by b'alpha' 
b"SSRF via 'Insert Image' feature of Products/Collections/Frontpage"
24 Aug 2015 timeline
b'Zaption' disclosed a bug submitted by b'aaj' 
b'Open redirect filter bypass'
24 Aug 2015 timeline
b'Shopify' disclosed a bug submitted by b'00day' 
b'XSS https://delivery.shopifyapps.com/ (Digital Downloads App in myshopify.com)'
24 Aug 2015 timeline
b'PHP' disclosed a bug submitted by b'haquaman' 
b'Null pointer deref (segfault) in spl_autoload via ob_start'
23 Aug 2015 timeline
b'Gratipay' disclosed a bug submitted by b'bobrov' 
b'[gratipay.com] CRLF Injection'
20 Aug 2015 timeline
b'Yahoo!' disclosed a bug submitted by b'panchocosil' 
b'Store XSS Flicker main page'
14 Aug 2015 timeline
b'Yahoo!' disclosed a bug submitted by b'kyprizel' 
b'XSS using yql and developers console proxy'
14 Aug 2015 timeline
b'Yahoo!' disclosed a bug submitted by b'agarri_fr' 
b'Bypass of anti-SSRF defenses in YahooCacheSystem (affecting at least YQL and Pipes)'
14 Aug 2015 timeline
b'Yahoo!' disclosed a bug submitted by b'jordanmilne' 
b'Security.allowDomain("*") in SWFs on img.autos.yahoo.com allows data theft from Yahoo Mail (and others)'
14 Aug 2015 timeline
b'Yahoo!' disclosed a bug submitted by b'mildata' 
b'XSS in my yahoo'
14 Aug 2015 timeline
b'Yahoo!' disclosed a bug submitted by b'adrianbelen' 
b'clickjacking '
14 Aug 2015 timeline
1 ... 706 707 708 709 710 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM