the unofficial HackerOne disclosure timeline.

X
b'Node.js third-party modules' disclosed a bug submitted by b'garumpage' 
b'gitlabhook OS Command Injection'
13 Sep 2019 timeline
b'The Internet' disclosed a bug submitted by b'guido' 
b'ZeroMQ libzmq remote code execution'
12 Sep 2019 timeline
b'Brave Software' disclosed a bug submitted by b'metnew' 
b'Lack of quarantine meta-attribute for downloaded files leads to GateKeeper bypass'
12 Sep 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'niwasaki' 
b'JSONP hijacking'
11 Sep 2019 timeline
b'Shopify' disclosed a bug submitted by b'ashketchum' 
b'XSS while logging using Google'
11 Sep 2019 timeline
b'QIWI' disclosed a bug submitted by b'bobrov' 
b'[p2p.qiwi.com] nginx alias traversal'
11 Sep 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'iframe' 
b'Bash History file log'
11 Sep 2019 timeline
b'Apache httpd (IBB)' disclosed a bug submitted by b'real' 
b'Apache HTTP [2.4.17-2.4.38] Local Root Privilege Escalation'
11 Sep 2019 timeline
b'Ed' disclosed a bug submitted by b'magic_spell' 
b'Domain takeover on http://doesfranshaveashell.com/ due to expiration'
11 Sep 2019 timeline
b'The Internet' disclosed a bug submitted by b'xairy' 
b'Linux kernel: CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch'
11 Sep 2019 timeline
b'The Internet' disclosed a bug submitted by b'xairy' 
b'Linux kernel: CVE-2017-7308: a signedness issue in AF_PACKET sockets'
11 Sep 2019 timeline
b'The Internet' disclosed a bug submitted by b'jlleitschuh' 
b'Industry-Wide MITM Vulnerability Impacting the JVM Ecosystem'
10 Sep 2019 timeline
b'Apache httpd (IBB)' disclosed a bug submitted by b'cy1337' 
b'CVE-2019-0196: mod_http2 with scoreboard Use-After-Free (Read)'
10 Sep 2019 timeline
b'The Internet' disclosed a bug submitted by b'skyn3t' 
b'[bower] Arbitrary File Write through improper validation of symlinks while package extraction'
10 Sep 2019 timeline
b'Kaspersky' disclosed a bug submitted by b'alesandroortiz' 
b'Stored credentials instantly autofilled within sandboxed iframes'
10 Sep 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'laxe' 
b'Veracode and security audit record are publicly available'
10 Sep 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'chajer' 
b'Delete images of users with clickjacking in https://pw.mail.ru'
09 Sep 2019 timeline
b'Maker Ecosystem Growth Holding' disclosed a bug submitted by b'lucash-dev' 
b'Steal collateral during `end` process, by earning DSR interest after `flow`.'
09 Sep 2019 timeline
b'Shopify' disclosed a bug submitted by b'tems' 
b'Inject page in admin panel via Shopify.API.pushState'
09 Sep 2019 timeline
b'Uber' disclosed a bug submitted by b'appsecure_in' 
b"Sensitive user information disclosure at bonjour.uber.com/marketplace/_rpc via the 'userUuid' parameter"
09 Sep 2019 timeline
1 ... 404 405 406 407 408 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM