Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Zomato' disclosed a bug submitted by b'nbsp' 
b'Restaurant paiement information leaking (Including Bank Account Number etc...) on https://www.zomato.com/admin/zach/handler.php'
24 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'dolph1n' 
b'[debian.weblate.org]-Missing SPF Record'
24 Aug 2017 timeline
b'Gratipay' disclosed a bug submitted by b'nuii' 
b'Gratipay rails secret token (secret_key_base) publicly exposed in GitHub'
23 Aug 2017 timeline
b'Shopify' disclosed a bug submitted by b'dhaval' 
b'Setting Arbitrary Cookie at kitcrm.com'
23 Aug 2017 timeline
b'Pornhub' disclosed a bug submitted by b'rahulztez' 
b'Private videos can be added to our playlists'
23 Aug 2017 timeline
b'Unikrn' disclosed a bug submitted by b'sp1d3rs' 
b'Escaping images directory in S3 bucket when saving new avatar, using Path Traversal in filename'
23 Aug 2017 timeline
b'Unikrn' disclosed a bug submitted by b'coreyd97' 
b'HTML injection in email in unikrn.com'
23 Aug 2017 timeline
b'Coinbase' disclosed a bug submitted by b'paulos_' 
b'XSSI (Cross Site Script Inclusion)'
22 Aug 2017 timeline
b'WordPress' disclosed a bug submitted by b'mopman' 
b'[Buddypress] Arbitrary File Deletion through bp_avatar_set'
22 Aug 2017 timeline
b'New Relic' disclosed a bug submitted by b'albinowax' 
b'SSRF in alerts.newrelic.com exposes entire internal network'
22 Aug 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'f4lrik' 
b'???????? ????? ??? ??????????? ????? ????????? mail.ru'
22 Aug 2017 timeline
b'Automattic' disclosed a bug submitted by b'ramuelgall' 
b'XSS Vulnerability in WooCommerce Product Vendors plugin'
22 Aug 2017 timeline
b'Tor' disclosed a bug submitted by b'bagipro' 
b'[Android org.torproject.android] Possible to force list of bridges'
21 Aug 2017 timeline
b'Gratipay' disclosed a bug submitted by b'behzad900' 
b'xss '
21 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'footstep' 
b'Reset password more than once with a reset link'
21 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'footstep' 
b'Full Name Overwrite on Third party login'
21 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'footstep' 
b'No Rate Limitation on Regenerate Api Key'
21 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'footstep' 
b'Persistence of Third Party Association.'
21 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'footstep' 
b'Previous password could set as new password'
21 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'footstep' 
b'Password token validation in Weblate Bypass #2'
21 Aug 2017 timeline
1 ... 508 509 510 511 512 ... 727
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM