the unofficial HackerOne disclosure timeline.

X
b'Liberapay' disclosed a bug submitted by b'lahataleputih' 
b'REGISTRATION USING FAKE EMAIL ACCOUNT'
05 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'kapytein' 
b'Unsafe deserialization in Libera Pay allows to escalate a SQL injection to Remote Command Execution'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'mah1ndra' 
b'CSRF token manipulation in every possible form submits. NO server side Validation'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'buggy_hunter' 
b'csrf token did not changed after login/logout many times'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'nthack' 
b'Current CSP Policy chained with HTML Injection can lead to Data Exfiltration'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'4w3' 
b'Phishing by Navigating Browser Tabs'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'lahataleputih' 
b'CSRF ON EDITING NAME (OPTIONAL)'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'hack2684' 
b'Insecure Account Deletion'
04 Jun 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'inet_freedom' 
b' Local paths disclosure through error message'
04 Jun 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'lincoln9932' 
b'lootdog.io XSS'
04 Jun 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'danila_xawdxawdx' 
b'Blind Stored XSS'
04 Jun 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'danila_xawdxawdx' 
b'Partner Account Takeover on https://www.delivery-club.ru ????? ???????????????? ???????.'
04 Jun 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'danila_xawdxawdx' 
b'??????????? ?????? ???? ?? https://widget.operator.mail.ru'
04 Jun 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'danila_xawdxawdx' 
b'CSRF ?? ?????????? ?????? ?? ???????'
04 Jun 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'danila_xawdxawdx' 
b'Account Takeover on https://www.delivery-club.ru ????? ??????????? ???????.'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'd4w' 
b'The csrf token remains same after user logs in'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'mah1ndra' 
b'Same CSRF token is being used for deleting other platform login\xe2\x80\x99s within an account and across other liberapay Account\xe2\x80\x99s'
04 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'4bg0p' 
b'Anyone can register organization legal type as "Soletrader"'
03 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'babayaga_' 
b'Liberapay Non Verified Account Takeover with signup feature'
03 Jun 2018 timeline
b'Liberapay' disclosed a bug submitted by b'amaljacob' 
b'Able to View other users income history'
02 Jun 2018 timeline
1 ... 484 485 486 487 488 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM