the unofficial HackerOne disclosure timeline.

X
b'Informatica' disclosed a bug submitted by b'min4tor' 
b'RXSS in http://procurement-businesscatalog.informatica.com'
27 Mar 2020 timeline
b'Twitter' disclosed a bug submitted by b'meepmerp' 
b'User input validation can lead to DOS'
26 Mar 2020 timeline
b'NordVPN' disclosed a bug submitted by b'd4rk_g1rl' 
b'Unauthorized User Can Delete Any User Account'
26 Mar 2020 timeline
b'Visma Bug Bounty Program' disclosed a bug submitted by b'muon4' 
b'SSRF in img export'
26 Mar 2020 timeline
b'Visma Bug Bounty Program' disclosed a bug submitted by b'muon4' 
b'Stored XSS when uploading files to an invoice'
26 Mar 2020 timeline
b'Valve' disclosed a bug submitted by b'kohtep2010' 
b'Malformed BSP in GoldSrc Engine may cause shellcode injection'
25 Mar 2020 timeline
b'Valve' disclosed a bug submitted by b'kohtep2010' 
b'Vulnerability in GoldSource Engine allows to upload and run an arbitrary DLL on client'
25 Mar 2020 timeline
b'Valve' disclosed a bug submitted by b'hunterstanton' 
b'Malformed NAV file leads to buffer overflow and code execution in Left4Dead2.exe'
25 Mar 2020 timeline
b'Qulture.Rocks' disclosed a bug submitted by b'pain45' 
b'Privilege escalation from member user ( editor ) to admin user'
25 Mar 2020 timeline
b'Twitter' disclosed a bug submitted by b'naategh' 
b'Reset password without knowing current password'
25 Mar 2020 timeline
b'Vanilla' disclosed a bug submitted by b'mindingdata' 
b'XSS For Profile Name'
25 Mar 2020 timeline
b'Vanilla' disclosed a bug submitted by b'mindingdata' 
b'Conversation API Leaks Details Of UnAuthorized Conversations'
25 Mar 2020 timeline
b'Visma Bug Bounty Program' disclosed a bug submitted by b'base_64' 
b'[IDOR]Ability to Pause & Resume the Invoice of other users If GUID is known.'
25 Mar 2020 timeline
b'Visma Bug Bounty Program' disclosed a bug submitted by b'base_64' 
b'[IDOR]Ability to View/Delete/Edit (Forward to attachment archive) Email of other user if GUID is known.'
25 Mar 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'pain45' 
b'XSRF Token is Not being validated when sending emails test request which lead to CSRF attack using the flash file + 307 redirect technique'
25 Mar 2020 timeline
b'GitLab' disclosed a bug submitted by b'shaileshpratapwar' 
b'Email notification about login email changed is not received when using verified linked email address'
25 Mar 2020 timeline
b'Open-Xchange' disclosed a bug submitted by b'zhutyra' 
b'SSRF - Office Documents - Image URL'
25 Mar 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'pain45' 
b'Strored Xss on https://my.stripo.email/ ( multiple inputs)'
25 Mar 2020 timeline
b'LINE' disclosed a bug submitted by b'hahwul' 
b'SSRF on music.line.me through getXML.php'
25 Mar 2020 timeline
b'LINE' disclosed a bug submitted by b'zophi' 
b'DOM-based XSS on mobile.line.me'
25 Mar 2020 timeline
1 ... 348 349 350 351 352 ... 768
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM