the unofficial HackerOne disclosure timeline.

X
b'Fortmatic Inc.' disclosed a bug submitted by b'pwny_sec' 
b'HTTP SMUGGLING EXPOSED HMAC/DOS '
24 Mar 2020 timeline
b'Every.org' disclosed a bug submitted by b'ahmd_halabi' 
b'Flaw in Change Email https://youtu.be/MMvlcHIGs2A'
24 Mar 2020 timeline
b'Qulture.Rocks' disclosed a bug submitted by b'ravi2443' 
b'Unrestricted File Upload in Chat Window'
23 Mar 2020 timeline
b'NordVPN' disclosed a bug submitted by b'khizer47' 
b'Expired Available Domains in nordvpn.com website code'
23 Mar 2020 timeline
b'Every.org' disclosed a bug submitted by b'harshitshah4' 
b'Improper email address verifiation while saving Account Details'
23 Mar 2020 timeline
b'Valve' disclosed a bug submitted by b'xpaw' 
b'Hidden scheduled partner events are propagated to Steam clients in CMsgClientClanState'
20 Mar 2020 timeline
b'HackerOne' disclosed a bug submitted by b'yashrs' 
b'Race Condition leads to undeletable group member'
20 Mar 2020 timeline
b'HackerOne' disclosed a bug submitted by b'jobert' 
b'Unauthenticated users can obtain information about Checklist objects with unclaimed ChecklistCheck objects'
20 Mar 2020 timeline
b'PicsArt' disclosed a bug submitted by b'donhasan' 
b'User account compromised authentication bypass via oauth token impersonation'
20 Mar 2020 timeline
b'Myndr' disclosed a bug submitted by b'thilakesh' 
b'Reflected XSS in https://blocked.myndr.net'
19 Mar 2020 timeline
b'MariaDB' disclosed a bug submitted by b'badis' 
b'scripts loader (denial of service) vulnerability'
19 Mar 2020 timeline
b'OLX' disclosed a bug submitted by b'badis' 
b'load scripts DOS vulnerability'
19 Mar 2020 timeline
b'Reverb.com' disclosed a bug submitted by b'sandeep_hodkasia' 
b'Full account takeover'
19 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b'zelzal' 
b'Misconfigured Bucket [razer-assets2] https://assets2.razerzone.com/'
18 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b'nnez' 
b'Reflected XSS on https://www.easytopup.in.th/store/product/return on parameter mref_id'
18 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b'marzuki1337' 
b'AWS subdomain Takeover at estore.razersynapse.com'
18 Mar 2020 timeline
b'Starbucks' disclosed a bug submitted by b'bytebunny' 
b'Singapore - IDOR in campaign.starbucks.com.sg'
17 Mar 2020 timeline
b'Starbucks' disclosed a bug submitted by b'k3mlol' 
b'China - president-starbucks.com.cn DNS configuration reported as takeover'
17 Mar 2020 timeline
b'Starbucks' disclosed a bug submitted by b'e4366eolywrgpidfbio' 
b'Minimal information disclosure of internal asset names and links which were not publicly accessible.'
17 Mar 2020 timeline
b'Starbucks' disclosed a bug submitted by b'jackb898' 
b'athome.starbucks.com - URL parameter tampering of review forms permitted possible content injection'
17 Mar 2020 timeline
1 ... 347 348 349 350 351 ... 765
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM