the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'dr_dragon' 
b'Bypass Filter and get Stored Xss '
12 Dec 2018 timeline
b'HackerOne' disclosed a bug submitted by b'mik317' 
b'GitHub users outside of HackerOne organization can create and update Wiki pages of certain public HackerOne repositories'
12 Dec 2018 timeline
b'VK.com' disclosed a bug submitted by b'executor' 
b'???????????? ??? + ????????? ?????????? ??????? ? ???????? ????? ?????? ??????'
12 Dec 2018 timeline
b'Twitter' disclosed a bug submitted by b'csanuragjain' 
b'Opportunity to post hidden comments'
11 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'hamzamandil' 
b'Banner Grabbing - Apache Server Version Disclousure'
11 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'hamzamn2098' 
b' information disclosure which leak the apache version '
11 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'hach3ro' 
b'HTTP PUT method enabled'
11 Dec 2018 timeline
b'HackerOne' disclosed a bug submitted by b'haxta4ok00' 
b'Inline banner on Report page discloses whether organization runs a private program'
11 Dec 2018 timeline
b'RubyGems' disclosed a bug submitted by b'plover' 
b'DNS SRV lookup of file:// sources enables local hijacking of gems'
11 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'emitrani' 
b'HTTP PUT method enabled'
11 Dec 2018 timeline
b'Twitter' disclosed a bug submitted by b'nahoragg' 
b'CORS misconfig | Account Takeover'
10 Dec 2018 timeline
b'RubyGems' disclosed a bug submitted by b'mrunal' 
b'Cross-Domain JavaScript Source File Inclusion '
10 Dec 2018 timeline
b'QIWI' disclosed a bug submitted by b'igorpyan' 
b'??????????? ??????????? ?? ????? qiwi.com ?? ????? ????? ????????'
10 Dec 2018 timeline
b'MariaDB' disclosed a bug submitted by b'c0rv4x' 
b'Github wiki is editable by anyone'
10 Dec 2018 timeline
b'RubyGems' disclosed a bug submitted by b'claudijd' 
b'Request Hijacking Vulnerability in RubyGems 2.6.13 and earlier'
08 Dec 2018 timeline
b'RubyGems' disclosed a bug submitted by b'ooooooo_q' 
b'65534 times efficient, Brute-force attack for api_key'
08 Dec 2018 timeline
b'OLX' disclosed a bug submitted by b'secpentester1337' 
b'XSS Reflected at SEARCH >>'
08 Dec 2018 timeline
b'Khan Academy' disclosed a bug submitted by b'sarmadkhan' 
b'Cross site scripting (content-sniffing)'
08 Dec 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'c0rv4x' 
b'Github wikis are editable by anyone '
07 Dec 2018 timeline
b'Phabricator' disclosed a bug submitted by b'insufficiententropy' 
b'TOTP Key is shorter than RFC 4226 recommended minimum'
07 Dec 2018 timeline
1 ... 449 450 451 452 453 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM