the unofficial HackerOne disclosure timeline.

X
b'concrete5' disclosed a bug submitted by b'solov9ev' 
b'Stored XSS in the file search filter'
03 Jul 2020 timeline
b'concrete5' disclosed a bug submitted by b'solov9ev' 
b'Stored XSS on express entries'
03 Jul 2020 timeline
b'Node.js' disclosed a bug submitted by b'jzebor' 
b'Malformed HTTP/2 SETTINGS frame leads to reachable assert'
03 Jul 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'what_web' 
b'[www.stripo.email] There is no rate limit for /it/contact-us/ endpoints'
03 Jul 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'mraldersonn' 
b'multiple email usage -my.stripo.email-'
03 Jul 2020 timeline
b'8x8' disclosed a bug submitted by b'manantch' 
b'PHPinfo page on http://?????.callstats.io'
02 Jul 2020 timeline
b'Node.js' disclosed a bug submitted by b'galgo' 
b'Node.js HTTP/2 Large Settings Frame DoS'
02 Jul 2020 timeline
b'Node.js' disclosed a bug submitted by b'tniessen' 
b'napi_get_value_string_X allow various kinds of memory corruption'
02 Jul 2020 timeline
b'InnoGames' disclosed a bug submitted by b'webklex' 
b'Create any military unit in any age'
02 Jul 2020 timeline
b'Glassdoor' disclosed a bug submitted by b'safehacker_27' 
b'2FA bypass by sending blank code'
02 Jul 2020 timeline
b'pixiv' disclosed a bug submitted by b'katsuragicsl' 
b'CSRF at https://chatstory.pixiv.net/imported'
02 Jul 2020 timeline
b'Helium' disclosed a bug submitted by b'dracomalfoy' 
b'HTTP request Smuggling'
02 Jul 2020 timeline
b'SMTP2GO' disclosed a bug submitted by b'tryforimpossible' 
b'Stored XSS at https://app.smtp2go.com/settings/users/ '
02 Jul 2020 timeline
b'Showmax' disclosed a bug submitted by b'0x1_aulia' 
b'[stories.showmax.com] Cross Origin Misconfiguration - Sensitive Information Exposure'
01 Jul 2020 timeline
b'Twitter' disclosed a bug submitted by b'1735096419' 
b'??????????????'
01 Jul 2020 timeline
b'Slack' disclosed a bug submitted by b'mcsheehan' 
b'Tricking the "Create snippet" feature into displaying the wrong filetype can lead to RCE on Slack users'
30 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'm82a1' 
b'China - Open redirect at trackinghub.starbucks.com.cn'
30 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'cdl' 
b'Cross-Site Scripting (XSS) on www.starbucks.com | .co.uk login pages'
30 Jun 2020 timeline
b'Ubiquiti Inc.' disclosed a bug submitted by b'murmus' 
b'Local File Disclosure (+XSS+CSRF) in AirOS 6.2.0 devices'
30 Jun 2020 timeline
b'Ubiquiti Inc.' disclosed a bug submitted by b'murmus' 
b'RCE in AirOS 6.2.0 Devices with CSRF bypass'
30 Jun 2020 timeline
1 ... 316 317 318 319 320 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM