the unofficial HackerOne disclosure timeline.

X
b'PHP (IBB)' disclosed a bug submitted by b'simonscannell' 
b'efree() on uninitialized Heap data in imagescale leads to use-after-free'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'chihuahua' 
b'heap buffer overflow in phar_detect_phar_fname_ext'
10 Oct 2020 timeline
b'OpenSSL (IBB)' disclosed a bug submitted by b'jobert' 
b'Windows only: arbitrary file read vulnerability in openssl s_server'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'chamal' 
b'Uninitialized read in exif_process_IFD_in_TIFF'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'chamal' 
b'Uninitialized read in exif_process_IFD_in_MAKERNOTE'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'chamal' 
b'Invalid Read on exif_process_SOFn'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'chamal' 
b'Uninitialized read in gdImageCreateFromXbm'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'hacker2nd' 
b'CVE-2016-7418 PHP Out-Of-Bounds Read in php_wddx_push_element'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'hacker2nd' 
b'PHP Integer Overflow in gdImageWebpCtx'
10 Oct 2020 timeline
b'PHP (IBB)' disclosed a bug submitted by b'cy1337' 
b'Heap Buffer Overflow (READ: 4) in phar_parse_pharfile'
10 Oct 2020 timeline
b'Logitech' disclosed a bug submitted by b'raywando' 
b'GET based Open redirect on [streamlabs.com/content-hub/streamlabs-obs/search?query=]'
09 Oct 2020 timeline
b'Automattic' disclosed a bug submitted by b'fuzzme' 
b'[api.tumblr.com] Exploiting clickjacking vulnerability to trigger self DOM-based XSS'
09 Oct 2020 timeline
b'CS Money' disclosed a bug submitted by b'niggy' 
b'Improper authentication in the load sell inventory page'
08 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'ja3far' 
b'Stored Xss '
07 Oct 2020 timeline
b'Vercel' disclosed a bug submitted by b'morax' 
b'User personal data disclosure via API'
07 Oct 2020 timeline
b'BugPoC' disclosed a bug submitted by b'absshax' 
b'LFI to steal /etc/passwd - Bypass filter in the <meta property="og:image"> tag via redirect and much more'
07 Oct 2020 timeline
b'Starbucks' disclosed a bug submitted by b'k3mlol' 
b'Thailand - SNMP Publicly Accessible'
07 Oct 2020 timeline
b'GitLab' disclosed a bug submitted by b'rpadovani' 
b'Elasticsearch leaks data through the notes scope'
06 Oct 2020 timeline
b'GitLab' disclosed a bug submitted by b'rpadovani' 
b"Transferring a public group to a private group doesn't remove code from the Elastichsearch API search result"
06 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'jayesh25' 
b'Forgot Password Page SMS Brute Force could lead to Account Takeover using Android/IOS app "About the house" via api.prodom.smart.space'
06 Oct 2020 timeline
1 ... 286 287 288 289 290 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM