the unofficial HackerOne disclosure timeline.

X
b'U.S. Dept Of Defense' disclosed a bug submitted by b'usamasood' 
b'[?????] \xe2\x80\x94 DOM-based XSS on endpoint `/?s=`'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'pirateducky' 
b'Information disclousure by clicking on the link shown in http://????????/'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'PII leakage due to scrceenshot of health records'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://???'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'[CVE-2019-11510 ] Path Traversal on ???????? leads to leaked passwords, RCE, etc'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'Pulse Secure File disclosure, clear text and potential RCE'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[?????] Reflected GET XSS (/personnel.php?...&rcnum=*) with mouse action'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[????????] Boolean SQL Injection (/personnel.php?content=profile&rcnum=*)'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[??????] Reflected GET XSS (/personnel.php?..&folder=*) with mouse action'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[???????] Reflected GET XSS (/mission.php?...&missionDate=*)'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'?????????? bruteforceable RIC Codes allowing information on contracts '
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'Email PII disclosure due to Insecure Password Reset field'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[????????] Reflected XSS'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[?????] Get all tickets (IDOR)'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[???] SQL injection & Reflected XSS'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'd0nut' 
b'XSS on www.?????? alerts and a number of other pages'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b't-pwn' 
b'Server-Side Request Forgery (SSRF)'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'yumi' 
b'????? - DOM-based XSS'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'yumi' 
b'????? - DOM-based XSS'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'Partial PII leakage due to public set gitlab'
02 Dec 2019 timeline
1 ... 374 375 376 377 378 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM