the unofficial HackerOne disclosure timeline.

X
b'Node.js third-party modules' disclosed a bug submitted by b'asgerf' 
b'Prototype pollution attack (defaults-deep / constructor.prototype)'
28 Sep 2018 timeline
b'WordPress' disclosed a bug submitted by b'm7mdharoun' 
b'Reflected Swf XSS In ( plugins.svn.wordpress.org )'
27 Sep 2018 timeline
b'Redtube' disclosed a bug submitted by b'haythamnaamane' 
b'CSRF Full Account Takeover - https://redtube.com/settings'
27 Sep 2018 timeline
b'Rocket.Chat' disclosed a bug submitted by b'24nitin' 
b'XSS (stored) Wizard is saving executable code'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'CSRF in "send them an email and browser notification" feature'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'Bypass subdomain limits using race condition'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b"Stats Token doesn't expire after deactivating account"
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'CSRF in REPORT EMOTICON feature'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'Private and group tokens per minute endpoint active for disabled users'
27 Sep 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'cyphar' 
b'twofactor_auth bypassable if provider fails to load'
27 Sep 2018 timeline
b'Vanilla' disclosed a bug submitted by b'mr_r0w07' 
b'Unsanitized input in email field'
27 Sep 2018 timeline
b'Rocket.Chat' disclosed a bug submitted by b'edoverflow' 
b'Blind XSS in the rocket.chat registration email'
26 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'kazan71p' 
b'[chatws25.stream.highwebmedia.com] - Reflected XSS in c parameter'
26 Sep 2018 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'allenaleen' 
b'Browser Self XSS Protection not implemented'
26 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'c0narp' 
b'no notification send to victim if attacker hacks/accesses his victims WebLate account.'
26 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'hallaleen' 
b'Browser Self XSS Protection not implemented'
26 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'crazy_wonk' 
b'Broken Authentication \xe2\x80\x93 Session Token bug'
26 Sep 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'icewater' 
b'Shared file link - password protection bypass under certain conditions'
25 Sep 2018 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'aidantwoods' 
b'Reflected XSS'
25 Sep 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'mohdhaji87' 
b'Access control issue -- [Allow file system access not validated when using session auth]'
25 Sep 2018 timeline
1 ... 464 465 466 467 468 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM