the unofficial HackerOne disclosure timeline.

X
b'curl' disclosed a bug submitted by b'geeknik' 
b'libcurl: SMTP end-of-response out-of-bounds read - CVE-2019-3823'
08 Jan 2021 timeline
b'curl' disclosed a bug submitted by b'tsedlmeyer' 
b'curl still vulnerable to SMB access smuggling via FILE URL on Windows'
08 Jan 2021 timeline
b'curl' disclosed a bug submitted by b'major_tom' 
b'Curl_auth_create_plain_message integer overflow leads to heap buffer overflow'
08 Jan 2021 timeline
b'GitLab' disclosed a bug submitted by b'vaib25vicky' 
b'Able to leak private email of any user given his/her username via graphql'
08 Jan 2021 timeline
b'Courier' disclosed a bug submitted by b'bugera' 
b'Rate limit function bypass can leads to occur huge critical problem into website. '
08 Jan 2021 timeline
b'curl' disclosed a bug submitted by b'lersek-rh' 
b'curl successfully matches IP address literal in URL against IP address literal in certificate Common Name'
08 Jan 2021 timeline
b'curl' disclosed a bug submitted by b'salvet' 
b'Only OpenSSL handles a CRL when passed in via CApath '
08 Jan 2021 timeline
b'curl' disclosed a bug submitted by b'd4d' 
b'Abusing URL Parsers by long schema name'
08 Jan 2021 timeline
b'curl' disclosed a bug submitted by b'bagder' 
b'CVE-2020-8285: FTP wildcard stack overflow'
08 Jan 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'rhynorater' 
b'Blind SSRF on velodrome.canary.k8s.io'
07 Jan 2021 timeline
b'Logitech' disclosed a bug submitted by b'hammodmt' 
b'Host Header injection in oslo.io (using X-Forwarded-For header) leading to email spoofing'
07 Jan 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'jsafrane' 
b'csi-snapshot-controller crashes when processing VolumeSnapshot with non-existing PVC'
07 Jan 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'flag_c0' 
b'exposed Git Repo at http://api.e2e-kops-aws-canary.test-cncf-aws.canary.k8s.io/.git/'
07 Jan 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'flag_c0' 
b'Unsecured Grafana instance on https://monitoring.prow-canary.k8s.io/dashboards'
07 Jan 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'riramar' 
b'Plaintext storage of a password on kubernetes release bucket'
07 Jan 2021 timeline
b'Node.js' disclosed a bug submitted by b'piao' 
b'Potential HTTP Request Smuggling in nodejs'
07 Jan 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'steal_wart' 
b'Django Debug=True Leaks admin email addresss and serval system information '
07 Jan 2021 timeline
b'Doppler' disclosed a bug submitted by b'bugera' 
b'No rate limit into email change leads to email notification boombing to its victim.'
06 Jan 2021 timeline
b'Doppler' disclosed a bug submitted by b'bugera' 
b'Access page must be reloaded to perform multiple requests'
06 Jan 2021 timeline
b'Logitech' disclosed a bug submitted by b'c0nquer0r' 
b'One Click Account takeover using Ouath CSRF bypass by adding Null byte %00 in state parameter on www.streamlabs.com'
06 Jan 2021 timeline
1 ... 265 266 267 268 269 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM