the unofficial HackerOne disclosure timeline.

X
b'Omise' disclosed a bug submitted by b'malicious_mind528hz' 
b'assets/vendor.js file exposing sentry.io token and DNS and application id .'
09 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'vepe' 
b'CVE-2020-8284: trusting FTP PASV responses'
09 Feb 2021 timeline
b'Lyst' disclosed a bug submitted by b'gamer7112' 
b'DOM XSS on http://talks.lystit.com'
09 Feb 2021 timeline
b'Acronis' disclosed a bug submitted by b'lucasandracoli' 
b'Broken Access Controls'
09 Feb 2021 timeline
b'Acronis' disclosed a bug submitted by b'mosaa404' 
b'licenses key disclosure'
09 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'pendrek' 
b'huge COLUMNS causes progress-bar to buffer overflow'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'cjun' 
b'Integer overflow at line 1603 in the src/operator.c file'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'pauldreik' 
b'Buffer write overflow when forming dns over http request'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'pauldreik' 
b'Resource leak when using a normal site as DOH server'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'pauldreik' 
b'Potential invocation of qsort on uninitialized memory during cookie save'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'pauldreik' 
b'use after free in cookie.c'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'supersausage' 
b'curl on Windows can be forced to execute code via OpenSSL environment variables'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'nyymi' 
b'Unexpected access to process open files via file:///proc/self/fd/n'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'danielmarjamaki' 
b'Division by zero if terminal width is 2'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'invictus1306' 
b'Integer overlow in "header_append" function'
08 Feb 2021 timeline
b'curl' disclosed a bug submitted by b'sfpskywood' 
b'Integer overflow in the source code tool_cb_prg.c'
08 Feb 2021 timeline
b'Shopify' disclosed a bug submitted by b'sandeepk09' 
b"Low privileged user can create high privileged user's KITCRM authorization token and can read and write message to KIT"
07 Feb 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'hitman_47' 
b'Database error shown to the user when using a long guest name in richdocuments'
07 Feb 2021 timeline
b'Lark Technologies' disclosed a bug submitted by b'mike12' 
b'Stored XSS & SSRF in Lark Docs'
05 Feb 2021 timeline
b'Sixt GmbH & Co. Autovermietung KG BBP' disclosed a bug submitted by b'h_-_cker' 
b'Cross domain token leakage via Referer header'
05 Feb 2021 timeline
1 ... 255 256 257 258 259 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM