the unofficial HackerOne disclosure timeline.

X
b'lemlist' disclosed a bug submitted by b'solov9ev' 
b'Stored XSS in app.lemlist.com'
23 Jul 2020 timeline
b'Maximum' disclosed a bug submitted by b'what_web' 
b'[mijn.werkenbijdefensie.nl] Denial of service occurs due to lack of email length confirmation'
23 Jul 2020 timeline
b'Pornhub' disclosed a bug submitted by b'kaimi' 
b'View storyboard of private video @ ht.pornhub.com'
23 Jul 2020 timeline
b'Starbucks' disclosed a bug submitted by b'ko2sec' 
b'Singapore - Unrestricted File Upload Leads to XSS on campaign.starbucks.com.sg/api/upload'
22 Jul 2020 timeline
b'Starbucks' disclosed a bug submitted by b'rugb' 
b'Singapore - XXE at https://www.starbucks.com.sg/RestApi/soap11'
22 Jul 2020 timeline
b'Kubernetes' disclosed a bug submitted by b'kebe' 
b'Node disk DOS by writing to container /etc/hosts'
22 Jul 2020 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'luchua' 
b'Java: CWE-939 - Address improper URL authorization'
21 Jul 2020 timeline
b'8x8' disclosed a bug submitted by b'shakhawatpr99' 
b'Stored Cross Site Scripting.'
21 Jul 2020 timeline
b'Zomato' disclosed a bug submitted by b'technicaljunkie' 
b' The vulnerabilities found were XSS, Public disclosure, Network enumeration via CSRF, DLL hijacking.'
21 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'stored xss via Campaign Name.'
21 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'stored xss in app.lemlist.com'
21 Jul 2020 timeline
b'concrete5' disclosed a bug submitted by b'javakhishvili' 
b'Remote Code Execution (Reverse Shell) - File Manager'
21 Jul 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'saddean_' 
b'[express-cart] Wide CSRF in application'
21 Jul 2020 timeline
b'Courier' disclosed a bug submitted by b't3chn0phil3' 
b'SSO Provider Credential Cache (logged out of Google/GitHub, could still log into Courier)'
20 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'justchillin' 
b'User session access due to Oauth whitelist host bypass and postMessage'
20 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'alexeysergeevich' 
b'capsula.mail.ru - Admin blind stored XSS'
20 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'esetal' 
b'[geekbrains.ru] Reflected XSS via Angular Template Injection'
20 Jul 2020 timeline
b'Weblate' disclosed a bug submitted by b'fr0gz0x' 
b'Secret_key in GitHub'
18 Jul 2020 timeline
b'Staging.every.org' disclosed a bug submitted by b'dianeme' 
b'No Rate Limit On Reset Password'
17 Jul 2020 timeline
b'Phabricator' disclosed a bug submitted by b'rhinosf1' 
b'Edit Policy restriction does not prevent comments.'
17 Jul 2020 timeline
1 ... 311 312 313 314 315 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM