the unofficial HackerOne disclosure timeline.

X
b'HackerOne' disclosed a bug submitted by b'khoiasd' 
b'Cross-site Scripting (XSS) on HackerOne careers page'
17 Feb 2019 timeline
b'RATELIMITED' disclosed a bug submitted by b'd33van' 
b'Credientals Over GET method in plain Text'
17 Feb 2019 timeline
b'HackerOne' disclosed a bug submitted by b'qwertyqwertyqwertyu' 
b'report id is exposed for undisclosed reports in Hacktivity'
16 Feb 2019 timeline
b'Ian Dunn' disclosed a bug submitted by b'foobar7' 
b'XSSI: Quick Navigation Interface - leak of private page/post titles'
15 Feb 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'avi3719' 
b'Reflected XSS in the npm module express-cart.'
15 Feb 2019 timeline
b'Zomato' disclosed a bug submitted by b'chiraggupta8769' 
b'Open Redirect On Your Login Panel'
14 Feb 2019 timeline
b'MariaDB' disclosed a bug submitted by b's_p_q_r' 
b'[downloads.mariadb.org] CRLF injection in case of encoded query mark'
14 Feb 2019 timeline
b'WordPress' disclosed a bug submitted by b'simonscannell' 
b'Logic flaw in the Post creation process allows creating posts with arbitrary types without needing the corresponding nonce'
14 Feb 2019 timeline
b'Brave Software' disclosed a bug submitted by b'hackthedevil' 
b'DMARC RECORD MISSING'
13 Feb 2019 timeline
b'Dovecot' disclosed a bug submitted by b'halfdog' 
b'Username restriction bypass with SSL client authentication'
13 Feb 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'kushal89shah' 
b"[FG-VD-17-115] Mail.ru's Amigo Browser DLL Pre-Loading Vulnerability Notification"
12 Feb 2019 timeline
b'Twitter' disclosed a bug submitted by b'ameerpornillos' 
b'Information Exposure Through Directory Listing vulnerability on 8 vcache**.usw2.snappytv.com websites'
11 Feb 2019 timeline
b'Twitter' disclosed a bug submitted by b'cris-staicu' 
b'Tracking of users on third-party websites using the Twitter cookie, due to a flaw in authenticating image requests'
08 Feb 2019 timeline
b'Starbucks' disclosed a bug submitted by b'karthik87mit' 
b'Password Change not notified when changed from settings'
08 Feb 2019 timeline
b'Starbucks' disclosed a bug submitted by b'apapedulimu' 
b'Missing CSRF Token On Remove Coupun From Cart'
08 Feb 2019 timeline
b'GitLab' disclosed a bug submitted by b'urztruzchitrz' 
b'Guests Will Disclose the Private Project Full Activity Via Project Activity Feeds'
08 Feb 2019 timeline
b'Uber' disclosed a bug submitted by b'appsecure_in' 
b'Client secret, server tokens for developer applications returned by internal API'
08 Feb 2019 timeline
b'PayPal' disclosed a bug submitted by b'alexbirsan' 
b'XSSI on refer.xoom.com allows stealing email addresses and posting to Twitter on behalf of victim'
07 Feb 2019 timeline
b'PayPal' disclosed a bug submitted by b'bagipro' 
b'[Venmo Android] Remote theft of user session'
07 Feb 2019 timeline
b'PayPal' disclosed a bug submitted by b'bagipro' 
b'[PayPal Android] Remote theft of user session using push_notification_webview deeplink'
07 Feb 2019 timeline
1 ... 444 445 446 447 448 ... 769
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM