the unofficial HackerOne disclosure timeline.

X
b'Flock' disclosed a bug submitted by b'prial261' 
b'Subdomain takeover dew to missconfigured project settings for Custom domain\xc2\xa0.'
26 Oct 2018 timeline
b'VK.com' disclosed a bug submitted by b'norver' 
b'[??????/Android] ???????????? BroadcastReceiver ????????? ????????? ???? ??????? ? ?????????? ??????????? ??????? ????????????????? ??????????'
26 Oct 2018 timeline
b'HackerOne' disclosed a bug submitted by b'popeax' 
b'Improper UUID validation results in bypass of #419896'
25 Oct 2018 timeline
b'HackerOne' disclosed a bug submitted by b'haxta4ok00' 
b'User with privilege to maintain External Programs can update certain churned HackerOne programs'
25 Oct 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'frankspierings' 
b'Session fixation in password protected public download.'
25 Oct 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'bugdiscloseguys' 
b'Authentication Issue'
25 Oct 2018 timeline
b'Vanilla' disclosed a bug submitted by b'balis0ng' 
b'A SQL injection vulnerability in Vanilla'
25 Oct 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'glc' 
b'Open redirect on chaturbate.com (tipping/purchase_success)'
25 Oct 2018 timeline
b'Starbucks' disclosed a bug submitted by b'jackds' 
b'Sidekiq web UI (Ruby background processing) accessible unauthenticated via https://gift-test.starbucks.co.jp/sidekiq/busy'
24 Oct 2018 timeline
b'Brave Software' disclosed a bug submitted by b'qab' 
b'chrome://brave navigation from web'
23 Oct 2018 timeline
b'Brave Software' disclosed a bug submitted by b'qab' 
b'chrome://brave can still be navigated to, leading to RCE'
23 Oct 2018 timeline
b'Rockstar Games' disclosed a bug submitted by b'richardcao' 
b"Smuggle SocialClub's Facebook OAuth Code via Referer Leakage"
23 Oct 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'webtonull' 
b'Samlify is vulnerable to signature wrapping'
23 Oct 2018 timeline
b'h1-5411-CTF' disclosed a bug submitted by b'osintopsec' 
b'MemeCTF serial exploitation to local file read to Papertrail access via API-token leakage and more'
22 Oct 2018 timeline
b'Brave Software' disclosed a bug submitted by b'metnew' 
b"RCE: DnDing shortcut files to chrome://brave allows loading HTML files in Muon's context"
22 Oct 2018 timeline
b'Brave Software' disclosed a bug submitted by b'bobrov' 
b'[Android] HTML Injection in BatterySaveArticleRenderer WebView'
22 Oct 2018 timeline
b'h1-5411-CTF' disclosed a bug submitted by b'manoelt' 
b'Remote Command Execution in a internal server to get the flag file'
22 Oct 2018 timeline
b'h1-5411-CTF' disclosed a bug submitted by b'caioluders' 
b'Flag WriteUp'
22 Oct 2018 timeline
b'h1-5411-CTF' disclosed a bug submitted by b'herrera' 
b"Solution for h15411's CTF challenge"
22 Oct 2018 timeline
b'h1-5411-CTF' disclosed a bug submitted by b'apox' 
b'h1-5411-CTF report: LFI / Deserialization / XXE vulnerability, '
22 Oct 2018 timeline
1 ... 458 459 460 461 462 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM