the unofficial HackerOne disclosure timeline.

X
b'WePay' disclosed a bug submitted by b'pranav_hivarekar' 
b'Typical form vulnerable to csrf attack'
23 Aug 2014 timeline
b'HackerOne' disclosed a bug submitted by b'xtross' 
b'Account Hijacking (Only rare case scenario)'
23 Aug 2014 timeline
wont-fix
b'OkCupid' disclosed a bug submitted by b'kenb' 
b'XSS in 404 page of cdn.okccdn.com'
22 Aug 2014 timeline
b'Uzbey LLC' disclosed a bug submitted by b'darkh4x' 
b'Missing "size check" on files to upload could make memory leaks.'
22 Aug 2014 timeline
b'Slack' disclosed a bug submitted by b'cliffordtrigo' 
b'Deleting Teams implemenation'
21 Aug 2014 timeline
wont-fix
b'WePay' disclosed a bug submitted by b'mrrm' 
b'oauth redirect uri validation bug leads to open redirect and account compromise'
21 Aug 2014 timeline
wont-fix
b'Mavenlink' disclosed a bug submitted by b'cliffordtrigo' 
b'Clickjacking'
21 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'kenb' 
b'XSS on Every sports.yahoo.com page'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'surgent10cross' 
b'Comment Spoofing at http://suggestions.yahoo.com/detail/?prop=directory&fid=97721'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'surgent10cross' 
b'CSRF Token missing on http://baseball.fantasysports.yahoo.com/b1/127146/messages'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'surgent10cross' 
b'CSRF Token is missing on DELETE message option on http://baseball.fantasysports.yahoo.com/b1/127146/messages'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'internetwache' 
b'Open Proxy, http://www.smushit.com/ysmush.it/, 4/09/14, #SpringClean'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'quistertow' 
b'XSS in https://hk.user.auctions.yahoo.com'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'nahamsec' 
b'readble .htaccess + Source Code Disclosure (+ .SVN repository)'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'cmaruti' 
b'Infrastructure and Application Admin Interfaces (OWASP?CM?007)'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'cmaruti' 
b'TESTING FOR REFLECTED CROSS SITE SCRIPTING (OWASP?DV?001)'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'cmaruti' 
b'Testing for user enumeration (OWASP?AT?002) - https://gh.bouncer.login.yahoo.com'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'pytesus' 
b'Multiple vulnerabilities'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'bobrov' 
b'Open Redirect via Request-URI'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'jeroldcamacho' 
b'Yahoo Sports Fantasy Golf (Join Public Group)'
20 Aug 2014 timeline
1 ... 737 738 739 740 741 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM