the unofficial HackerOne disclosure timeline.

X
b'Starbucks' disclosed a bug submitted by b'k3m' 
b'Unauthorized access to a system used for CI/CD processes'
01 Nov 2018 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'albinowax' 
b'Defacement of catalog.data.gov via web cache poisoning to stored DOMXSS'
01 Nov 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'avlidienbrunn' 
b'Stored XSS in chat topic due to insecure emoticon parsing on any message type'
01 Nov 2018 timeline
b'Twitter' disclosed a bug submitted by b'bobrov' 
b'[staging-engineering.gnip.com] Publicly accessible GIT directory'
01 Nov 2018 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'bobrov' 
b'[idp.fr.cloud.gov] Open Redirect'
01 Nov 2018 timeline
b'Badoo' disclosed a bug submitted by b'jarvis7' 
b'??????????? ???? ????? ??????????? ID'
01 Nov 2018 timeline
b'Python (IBB)' disclosed a bug submitted by b'tiran' 
b"XML hash collision DoS vulnerability in Python's xml.etree module"
31 Oct 2018 timeline
b'Perl (IBB)' disclosed a bug submitted by b'karas' 
b'[CVE-2018-6913] heap-buffer-overflow in S_pack_rec'
31 Oct 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'nismo' 
b'Chaturbate "/chat_ignore_list/" endpoint does not check for Account status: Disabled before adding Ignore via POST'
31 Oct 2018 timeline
b'Miniclip' disclosed a bug submitted by b'paulochoupina' 
b'xss in miniclip.com'
31 Oct 2018 timeline
b'Valve' disclosed a bug submitted by b'moskowsky' 
b'Getting all the CD keys of any game'
31 Oct 2018 timeline
b'DuckDuckGo' disclosed a bug submitted by b'cujanovic' 
b'SSRF vulnerability on proxy.duckduckgo.com (access to metadata server on AWS)'
31 Oct 2018 timeline
b'HackerOne' disclosed a bug submitted by b'japz' 
b'Hacker can bypass 2FA requirement and reporter blacklist through embedded submission form'
31 Oct 2018 timeline
b'' disclosed a bug submitted by b'bagipro' 
b'Golden techniques to bypass host validations in Android apps'
30 Oct 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'asgerf' 
b'Prototype pollution attack (lodash / constructor.prototype)'
30 Oct 2018 timeline
b'GitLab' disclosed a bug submitted by b'8ayac' 
b'Stored XSS on Issue details page'
30 Oct 2018 timeline
b'Dropbox' disclosed a bug submitted by b'paulos_' 
b'Dropbox Paper - Markdown XSS'
29 Oct 2018 timeline
b'Automattic' disclosed a bug submitted by b'paulos_' 
b'Multiple File Manipulation bugs in WP Super Cache '
29 Oct 2018 timeline
b'Apache httpd (IBB)' disclosed a bug submitted by b'97ffb8d5' 
b'DoS for HTTP/2 connections by crafted requests (CVE-2018-1333)'
28 Oct 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'cris_semmle' 
b'Code Injection Vulnerability in morgan Package'
28 Oct 2018 timeline
1 ... 457 458 459 460 461 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM