the unofficial HackerOne disclosure timeline.

X
b'Ubiquiti Inc.' disclosed a bug submitted by b'jstjohn' 
b'Firmware download/install vulnerable to CSRF'
29 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'njgadhiya' 
b'Cross-Site Request Forgery (CSRF) in my.games API'
28 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'deadmin' 
b'XSS in [community.my.games]'
28 May 2020 timeline
b'MariaDB' disclosed a bug submitted by b'lixtelnis' 
b'Path traversal in command line client'
28 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'zerboa' 
b'relap.io CSRF bypass on adding domain to use relap widgets '
28 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'tr3harder' 
b'Reflected XSS at city-mobil.ru'
28 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'tr3harder' 
b'IDOR of users '
28 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'tr3harder' 
b'Account Takeover worki.ru'
28 May 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'0x48piraj' 
b'OS Command Injection on Jison [all-parser-ports]'
28 May 2020 timeline
b'lemlist' disclosed a bug submitted by b'arsene_lupin' 
b'SSRF in img.lemlist.com that leads to Localhost Port Scanning'
28 May 2020 timeline
b'Helium' disclosed a bug submitted by b'azraelsec' 
b'Organization Takeover'
27 May 2020 timeline
b'Helium' disclosed a bug submitted by b'azraelsec' 
b'Organization Takeover via invitation API'
27 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'r00tpgp' 
b'Previously Compromised PulseSSL VPN Hosts'
27 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sensoyard' 
b'Unrestricted file upload leads to stored xss on https://????????/'
27 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'hunt4p1zza' 
b'[Critical] Insufficient Access Control On Registration Page of Webapps Website Allows Privilege Escalation to Administrator '
27 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nagli' 
b'No Rate Limiting on https://??????/??????????/accounts/password/reset/ endpoint leads to Denial of Service'
27 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'manshum12' 
b'Self XSS combine CSRF at https://????????/index.php'
27 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'manshum12' 
b'XSS Reflected '
27 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'droop3r' 
b'Remote Code Execution through DNN Cookie Deserialization '
27 May 2020 timeline
b'Open-Xchange' disclosed a bug submitted by b'catenacyber' 
b'Missing (or redundant) null check in `dcrypt_openssl_sign`'
27 May 2020 timeline
1 ... 328 329 330 331 332 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM