the unofficial HackerOne disclosure timeline.

X
b'RBKmoney' disclosed a bug submitted by b'n00bsec' 
b'SUBDOMAIN TAKEOVER [http://dev.rbk.money/]'
02 Jul 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'tungpun' 
b'[serve] Server Directory Traversal'
02 Jul 2018 timeline
b'VK.com' disclosed a bug submitted by b'namthar' 
b'????????? ?????? ?????? ???????? (??? ?????) ????? ????? ?????????????? ??????'
30 Jun 2018 timeline
b'VK.com' disclosed a bug submitted by b'pisarenko' 
b'?????????? ???? ??????????? ?????? ?????? , ??????? ???????????? ???????? + ???'
30 Jun 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ginden' 
b'Privilage escalation with malicious .npmrc'
30 Jun 2018 timeline
b'ok.ru' disclosed a bug submitted by b'lincoln9932' 
b'????? ??????? XSS ? ?????? ?????????? m.ok.ru'
30 Jun 2018 timeline
b'VK.com' disclosed a bug submitted by b'shad0walk3rtn' 
b'Open Redirection Vulnerability in m.vk.com'
29 Jun 2018 timeline
b'SEMrush' disclosed a bug submitted by b'asad_anwar' 
b'Error Page Content Spoofing or Text Injection '
29 Jun 2018 timeline
b'Electroneum' disclosed a bug submitted by b'hackermanbob' 
b'Hackerone [Mainsite Vulnerability]'
28 Jun 2018 timeline
b'Udemy' disclosed a bug submitted by b'kazan71p' 
b'[engineering.udemy.com] - Subdomain Takeover (ghost.io)'
27 Jun 2018 timeline
b'HackerOne' disclosed a bug submitted by b'parth' 
b'Hacktivity of a private program visible to banned user if he gets invited to a program by hackbot'
27 Jun 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'chalker' 
b'`memjs` allocates and stores buffers on typed input, resulting in DoS and uninitialized memory usage'
27 Jun 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'n0n4me' 
b'[buttle] Path traversal in mid-buttle module allows to read any file in the server.'
27 Jun 2018 timeline
b'HackerOne' disclosed a bug submitted by b'bigbug' 
b'Invalid Phabricator API token revealed through error message when escalating a report'
27 Jun 2018 timeline
b'HackerOne' disclosed a bug submitted by b'ashish_r_padelkar' 
b'User object in GraphQL exposes number of trial reports for External Programs that also have a Private Program'
27 Jun 2018 timeline
b'Twitter' disclosed a bug submitted by b'arjuniet' 
b'Improper session handling on web browsers'
26 Jun 2018 timeline
b'HackerOne' disclosed a bug submitted by b'r3naissance' 
b'People who interviewed for HackerOne security analyst position can be enumerated and their personal email address may be exposed'
25 Jun 2018 timeline
b'Starbucks' disclosed a bug submitted by b'0xpatrik' 
b'Subdomain takeover on svcgatewayus.starbucks.com'
25 Jun 2018 timeline
b'VK.com' disclosed a bug submitted by b'pisarenko' 
b'?????????? ???? ??????????? ???????? ??? ?????? ????????? ???? ??? ????? '
24 Jun 2018 timeline
b'Badoo' disclosed a bug submitted by b'isaeva' 
b'?????????? ?????/??????? ?????????????'
24 Jun 2018 timeline
1 ... 480 481 482 483 484 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM