the unofficial HackerOne disclosure timeline.

X
b'Uber' disclosed a bug submitted by b'filedescryptor' 
b'lert.uber.com: Few default folders/files of AURA Framework are accessible'
19 Dec 2018 timeline
b'Keybase' disclosed a bug submitted by b'mirchr' 
b'Linux privilege escalation via trusted $PATH in keybase-redirector '
18 Dec 2018 timeline
b'Keybase' disclosed a bug submitted by b'xpn' 
b'Privilege Escalation via Keybase Helper'
18 Dec 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'ezkbd' 
b'Ubuntu 12.04 Privilege Escalation'
18 Dec 2018 timeline
b'OLX' disclosed a bug submitted by b'lukeberner' 
b"Able to list user's public name, username, phone number, address, facebook ID..."
17 Dec 2018 timeline
b'MyCrypto' disclosed a bug submitted by b'shantuman' 
b'SPF Records (SMTP protection not used)'
17 Dec 2018 timeline
b'Brave Software' disclosed a bug submitted by b'mushicious' 
b'Field Day With Protocol Handlers'
17 Dec 2018 timeline
b'YouPorn' disclosed a bug submitted by b'prakharprasad' 
b'Add a video to favourite list of any user [via YouPorn API / FrontEnd]'
17 Dec 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'dienpv' 
b'Prototype pollution attack (lutils-merge)'
17 Dec 2018 timeline
b'OLX' disclosed a bug submitted by b'pajoda' 
b'Search Page Reflected XSS on sharjah.dubizzle.com through unencoded output of GET parameter in JavaScript'
16 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'whoami021' 
b'Apache Version Disclosure Through Directory Indexing'
15 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'dhamu_harker' 
b'Information Disclosure on https://theendlessweb.com/'
15 Dec 2018 timeline
b'Twitter' disclosed a bug submitted by b'edent' 
b'Incorrect details on OAuth permissions screen allows DMs to be read without permission'
14 Dec 2018 timeline
b'Imgur' disclosed a bug submitted by b'sbakhour' 
b'Ability to login to the Nexus Repo Manager from https://nexus.imgur.com/ '
13 Dec 2018 timeline
b'Augur' disclosed a bug submitted by b'michaelx' 
b'Indisputable Reporting via Arbitrarily Large Initial Reports'
13 Dec 2018 timeline
b'Brave Software' disclosed a bug submitted by b'tvgfvghjbhunj' 
b'Brave allows flash to follow 307 redirects to other origins with arbitrary content-types'
12 Dec 2018 timeline
b'Paragon Initiative Enterprises' disclosed a bug submitted by b'whitehat_hacker' 
b"Github repo's wiki publicly editable"
12 Dec 2018 timeline
b'Liberapay' disclosed a bug submitted by b'strukt' 
b'Publicly editable GitHub wikis'
12 Dec 2018 timeline
b'Ian Dunn' disclosed a bug submitted by b'whitehat_hacker' 
b"Security issue: Github repo's wiki publicly editable"
12 Dec 2018 timeline
b'Shopify' disclosed a bug submitted by b'dr_dragon' 
b'Bypass Filter and get Stored Xss '
12 Dec 2018 timeline
1 ... 448 449 450 451 452 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM