the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'm7mdharoun' 
b'subdomain Takeover at blog.exchangemarketplace.com '
01 Oct 2018 timeline
b'ICQ' disclosed a bug submitted by b'3c75' 
b'Gain access to random information via group chat "about" property'
01 Oct 2018 timeline
b'Reverb.com' disclosed a bug submitted by b'sandeep_hodkasia' 
b'Stored xss in shop name @ lp.reverb.com'
01 Oct 2018 timeline
b'ICQ' disclosed a bug submitted by b'executor' 
b'Stored xss ? ??????????? ?????????.'
01 Oct 2018 timeline
b'ICQ' disclosed a bug submitted by b'n4sty' 
b'XSS ??? ?????????? ? ??? ???????????? '
01 Oct 2018 timeline
b'ICQ' disclosed a bug submitted by b'flamezzz' 
b'[web.icq.com] Stored XSS in link when sending message'
01 Oct 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'lucky_sen' 
b'Rate limit missing at room login'
30 Sep 2018 timeline
b'Inflection' disclosed a bug submitted by b'exception' 
b'Session ID is accessible via XSS'
30 Sep 2018 timeline
b'PullString' disclosed a bug submitted by b'exception' 
b'Open redirect at staging.pullstring.com'
30 Sep 2018 timeline
b'Shopify' disclosed a bug submitted by b'tony_tsep' 
b'Stored XSS on buy button'
29 Sep 2018 timeline
b'Brave Software' disclosed a bug submitted by b'metnew' 
b'Local files reading using `link[rel="import"]`'
29 Sep 2018 timeline
b'Brave Software' disclosed a bug submitted by b'metnew' 
b'Local files reading from the "file://" origin through `brave://`'
29 Sep 2018 timeline
b'Monero' disclosed a bug submitted by b'ahook' 
b'Malicious get_random_rct_outs.bin rpc can cause a near-infinite loop'
28 Sep 2018 timeline
b'Monero' disclosed a bug submitted by b'talko' 
b'Stack Overflow in JSON RPC Server'
28 Sep 2018 timeline
b'Upserve ' disclosed a bug submitted by b'naasha' 
b'Reflected xss on theacademy.upserve.com'
28 Sep 2018 timeline
b'ExpressionEngine' disclosed a bug submitted by b'unbaiat' 
b'License verification mechanism can be bypassed'
28 Sep 2018 timeline
b'ExpressionEngine' disclosed a bug submitted by b'unbaiat' 
b'Persistent XSS via malicious license file'
28 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'crazy_wonk' 
b'2nd issue>>> flood of email no rate limit on delete account confirmation email >> '
28 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'crazy_wonk' 
b'flood of comment no rate limit on commnets >> by using different user agent '
28 Sep 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'asgerf' 
b'Prototype pollution attack (merge.recursive)'
28 Sep 2018 timeline
1 ... 463 464 465 466 467 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM