the unofficial HackerOne disclosure timeline.

X
b'Mail.Ru' disclosed a bug submitted by b'mobius07' 
b'???????? ?????????? phpinfo() ?? ????? https://agent.mail.ru'
29 May 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'bl4de' 
b'[sexstatic] HTML injection in directory name(s) leads to Stored XSS when malicious file is embed with <iframe> element used in directory name'
29 May 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'catferq' 
b'LFI in beta.mail.ru'
28 May 2018 timeline
b'Coalition, Inc.' disclosed a bug submitted by b'emitrani' 
b'Non-Cloudflare IPs allowed to access origin servers'
28 May 2018 timeline
b'Dovecot' disclosed a bug submitted by b'k4nik4' 
b'Buffer overflow in sha3'
27 May 2018 timeline
b'Snapchat' disclosed a bug submitted by b'esnard' 
b'XSS found on Snapchat website'
26 May 2018 timeline
b'Boozt Fashion AB' disclosed a bug submitted by b'ramsexy' 
b'[www.boozt.com] - Authentication bypass'
25 May 2018 timeline
b'Instacart' disclosed a bug submitted by b'bigshaq' 
b'View & add to cart unlisted items via IDOR'
25 May 2018 timeline
b'Valve' disclosed a bug submitted by b'xpaw' 
b'Aapp name leakage on economy history page'
24 May 2018 timeline
b'Valve' disclosed a bug submitted by b'xpaw' 
b'Unfiltered input allows for XSS in "Playtime Item Grants" fields'
24 May 2018 timeline
b'Valve' disclosed a bug submitted by b'osintopsec' 
b'Stored XXS @ https://steamcommunity.com/search/users/#text= via Profile Name'
24 May 2018 timeline
b'GitLab' disclosed a bug submitted by b'jobert' 
b'GitHub import allows user to create child group under existing namespace'
24 May 2018 timeline
b'MyCrypto' disclosed a bug submitted by b'nitesculucian' 
b'Missing SPF record for the in scope domain'
24 May 2018 timeline
b'MyCrypto' disclosed a bug submitted by b'pradyumna1998' 
b'Missing SPF Records.'
24 May 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'alex2018frolov' 
b'???????? XSS ( API )'
23 May 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'alex2018frolov' 
b'XSS ??????????'
23 May 2018 timeline
b'Shopify' disclosed a bug submitted by b'0xacb' 
b'SSRF in Exchange leads to ROOT access in all instances'
23 May 2018 timeline
b'Bitwarden' disclosed a bug submitted by b'kmodi' 
b'Tracking Bitwarden firefox addon users'
23 May 2018 timeline
b'Phabricator' disclosed a bug submitted by b'xiaoyinl' 
b'The "Download Raw Diff" URL is viewable by everyone'
23 May 2018 timeline
b'Trello' disclosed a bug submitted by b'slowrabbit' 
b'Session can be continuously reused by editting "token" cookie.'
23 May 2018 timeline
1 ... 486 487 488 489 490 ... 766
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM