Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Tor' disclosed a bug submitted by b'guido' 
b'smartlist_add, smartlist_insert (may) cause heap corruption as a result of inadequate checks in smartlist_ensure_capacity'
19 Oct 2017 timeline
b'Tor' disclosed a bug submitted by b'guido' 
b'Heap corruption via memarea.c'
19 Oct 2017 timeline
b'Tor' disclosed a bug submitted by b'guido' 
b'[tor] libevent dns OOB read'
19 Oct 2017 timeline
b'Tor' disclosed a bug submitted by b'guido' 
b'[tor] control connection pre-auth DoS (infinite loop) with --enable-bufferevents'
19 Oct 2017 timeline
b'Tor' disclosed a bug submitted by b'guido' 
b'potential memory corruption in or/buffers.c (particularly on 32 bit)'
19 Oct 2017 timeline
b'Tor' disclosed a bug submitted by b'guido' 
b'Overreads/overcopies in torsocks'
19 Oct 2017 timeline
b'Inflection' disclosed a bug submitted by b'raghavendra' 
b'No password confirmation on changing primary email address'
18 Oct 2017 timeline
b'Gratipay' disclosed a bug submitted by b'myster' 
b'Broken link for stale DNS entry may be leveraged for Phishing, Misinformation, Serving Malware'
18 Oct 2017 timeline
b'GitLab' disclosed a bug submitted by b'ysx' 
b'[Markdown] Stored XSS via character encoding parser bypass'
18 Oct 2017 timeline
b'Lyst' disclosed a bug submitted by b'tripwire' 
b'SSRF at iris.lystit.com'
18 Oct 2017 timeline
b'Vimeo' disclosed a bug submitted by b'opnsec' 
b'Watch any Password Video without password'
18 Oct 2017 timeline
b'Vimeo' disclosed a bug submitted by b'opnsec' 
b'OAuth 2 Authorization Bypass via CSRF and Cross Site Flashing'
18 Oct 2017 timeline
b'Vimeo' disclosed a bug submitted by b'opnsec' 
b'Images and Subtitles Leakage from private videos'
18 Oct 2017 timeline
b'CodeIgniter' disclosed a bug submitted by b'hackerneo' 
b'If the developer forgets to remove the built in controller welcome.php it helps the attacker to identify that the site is built with Codeigniter'
18 Oct 2017 timeline
b'QIWI' disclosed a bug submitted by b'pengenkiddy' 
b'[qiwi.com] XSS on payment form'
17 Oct 2017 timeline
b'Inflection' disclosed a bug submitted by b'malcolmx' 
b'Open Redirect through POST Request'
16 Oct 2017 timeline
b'HackerOne' disclosed a bug submitted by b'hk755a' 
b'Homograph fix Bypass '
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'agarri_fr' 
b'SSRF issue in "URL target" allows [REDACTED]'
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'agarri_fr' 
b'Remote code execution as root on [REDACTED]'
16 Oct 2017 timeline
b'Zendesk' disclosed a bug submitted by b'zombiehelp54' 
b'open redirect in <your_zendesk>.zendesk.com'
16 Oct 2017 timeline
1 ... 507 508 509 510 511 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM