the unofficial HackerOne disclosure timeline.

X
b'U.S. Dept Of Defense' disclosed a bug submitted by b'hackerfactor' 
b'Gateway information leakage'
30 Jul 2019 timeline
b'PayPal' disclosed a bug submitted by b'born2hack' 
b'IDOR to add secondary users in www.paypal.com/businessmanage/users/api/v1/users'
30 Jul 2019 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'tolo7010' 
b'Nginx misconfiguration leading to direct PHP source code download'
29 Jul 2019 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'noobzombie' 
b'Unclaimed Github Repository Takeover on https://www.data.gov/labs'
29 Jul 2019 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'omnicient' 
b'Root user disclosure in data.gov domain though x-amz-meta-s3cmd-attrs header'
29 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'doragon' 
b'SQLi allow query restriction bypass on exposed FileContentProvider'
29 Jul 2019 timeline
b'Paragon Initiative Enterprises' disclosed a bug submitted by b'nitish_mathur' 
b'Github wikis are editable by anyone https://github.com/paragonie/password_lock/wiki'
29 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'funt0m' 
b'W3 Total Cache plugin multiple vulnerabilities'
28 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'theguynamedguy86' 
b'In Dockerized Environments, Failing to Read config.php Grants Any Anonymous User Full Admin Access'
27 Jul 2019 timeline
b'WordPress' disclosed a bug submitted by b'yuvraj_dighe' 
b'Add users to groups who have restricted group invites'
27 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'foobar7' 
b'Gallery: No feedback for invalid password'
27 Jul 2019 timeline
b'Automattic' disclosed a bug submitted by b'yusuf_furkan' 
b'No rate limit on app.crowdsignal.com (Finish quiz)'
27 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'gvde' 
b"LDAP login possible even though account doesn't match user filter"
27 Jul 2019 timeline
b'Zendesk' disclosed a bug submitted by b'hariharan-s' 
b'Stored XSS in Macro Editing - Introduced by Admins to affect Admins'
27 Jul 2019 timeline
b'WordPress' disclosed a bug submitted by b'wxy7174' 
b'Stored XSS on byddypress Plug-in via groups name'
27 Jul 2019 timeline
b'Unikrn' disclosed a bug submitted by b'dr_akm' 
b'Rate Limit workaround in the message of the phone number verification '
26 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Some HTML Tags are Getting Executed in com.nextcloud.client'
26 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'blackdex' 
b'Able to bypass "Device credentials" Lock'
26 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'doragon' 
b'Combination of content provider allows private data disclosure'
26 Jul 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'doragon' 
b'Bypassing lock protection'
26 Jul 2019 timeline
1 ... 415 416 417 418 419 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM