the unofficial HackerOne disclosure timeline.

X
b'Lob' disclosed a bug submitted by b'ghostin' 
b'Discloser of Internal Ip address'
15 Apr 2019 timeline
b'Ed' disclosed a bug submitted by b'drstache' 
b'securitytemplate.site domain hijack'
15 Apr 2019 timeline
b'Automattic' disclosed a bug submitted by b'bugraeskici' 
b'No Rate Limit on CrowdSignal Polls when Adding Comment'
13 Apr 2019 timeline
b'GitLab' disclosed a bug submitted by b'plazmaz' 
b'SSRF in CI after first run'
12 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'kusl' 
b'Previous attachments can be referenced when creating a new report'
12 Apr 2019 timeline
b'SEMrush' disclosed a bug submitted by b'memon' 
b'Web cache deception attack - expose earning state information'
12 Apr 2019 timeline
b'SEMrush' disclosed a bug submitted by b'b3f53dc9b2061f7df0c2ffd' 
b'Ports are not shown in third-party site redirect warning page.'
12 Apr 2019 timeline
b'OLX' disclosed a bug submitted by b'codelatteid' 
b'XSS inside HTML Link Tag'
12 Apr 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'rohit_coder' 
b'NextCloud is also Accepting OCTET-STREAM Type of Documents instead of jpg or Imge Files Only'
11 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'jaimaakali' 
b'Missing Certificate Authority Authorization rule'
11 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'rohitdua' 
b'Missing rate limit on critical user actions e.g. reset password, change email, disable account.'
11 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'whhackersbr' 
b'HackerOne Integrations Design Issue'
11 Apr 2019 timeline
b'VK.com' disclosed a bug submitted by b'norver' 
b'??????????? ??????? ???????? VK API ? ?????????? ??????'
11 Apr 2019 timeline
b'RubyGems' disclosed a bug submitted by b'ooooooo_q' 
b'Delete directory using symlink when decompressing tar'
11 Apr 2019 timeline
b'Slack' disclosed a bug submitted by b'rubaljain' 
b'Real Time Error Logs Through Debug Information'
11 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'rohitdua' 
b'Lack of length validation on user address attribute'
11 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'haxta4ok00' 
b'Repeated mediation requests and multiple emails possible on a report.'
11 Apr 2019 timeline
b'Shopify' disclosed a bug submitted by b'fransrosen' 
b'H1514 Simple phishing using auto-created modal with weak URL-pattern check in incontext_app_link'
10 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'corb3nik' 
b'Verbose PHP error messages exposed on a blog article'
10 Apr 2019 timeline
b'Starbucks' disclosed a bug submitted by b'13ern' 
b'Stored XSS on www.starbucks.com.sg/careers/career-center/career-landing-*'
10 Apr 2019 timeline
1 ... 435 436 437 438 439 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM