Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'81 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'60 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Legal Robot' disclosed a bug submitted by b'gujjuboy10x00' 
b'Missing Issuer parameter on TOTP 2FA'
20 Aug 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'gujjuboy10x00' 
b'Change password logic inversion'
20 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'chols' 
b'Password Restriction'
19 Aug 2017 timeline
b'Zomato' disclosed a bug submitted by b'kuromatae' 
b'Posting to Twitter CSRF on php/post_twitter_authenticate.php'
19 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'asaxena2190' 
b'Improper validation of unicode characters'
19 Aug 2017 timeline
b'Snapchat' disclosed a bug submitted by b'nahamsec' 
b'RCE/LFI on test Jenkins instance due to improper authentication flow'
19 Aug 2017 timeline
b'Twitter' disclosed a bug submitted by b'malcolmx' 
b'Open Redirect'
19 Aug 2017 timeline
b'Snapchat' disclosed a bug submitted by b'preben_ve' 
b'Open prod Jenkins instance'
19 Aug 2017 timeline
b'Harvest' disclosed a bug submitted by b'vijay_kumar1110' 
b'CSRF bypass on Submit Time sheet for Approval'
18 Aug 2017 timeline
b'concrete5' disclosed a bug submitted by b'bl4de' 
b'Stored XSS vulnerability in RSS Feeds Description field'
18 Aug 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'rehan' 
b'Password reset form ignores email field'
18 Aug 2017 timeline
b'Weblate' disclosed a bug submitted by b'platinum1933' 
b'Weak password policy'
18 Aug 2017 timeline
b'concrete5' disclosed a bug submitted by b'bl4de' 
b'Stored XSS in Name field in User Groups/Group Details form'
17 Aug 2017 timeline
b'concrete5' disclosed a bug submitted by b'bl4de' 
b"Stored XSS in Private Messages 'Reply' allows to execute malicious JavaScript against any user while replying to the message which contains payload"
17 Aug 2017 timeline
b'Mapbox' disclosed a bug submitted by b'sahilsaif' 
b'Stored xss in editor '
17 Aug 2017 timeline
b'YouPorn' disclosed a bug submitted by b'nahamsec' 
b'IDOR - Access to private video thumbnails even if video requires password authentication'
17 Aug 2017 timeline
b'Harvest' disclosed a bug submitted by b'vijay_kumar1110' 
b'Project Manager can approve pending reports(Access control Issue)'
17 Aug 2017 timeline
b'Udemy' disclosed a bug submitted by b'kaushalag29' 
b'Violation of secure design principle'
17 Aug 2017 timeline
b'Open-Xchange' disclosed a bug submitted by b'vijay_kumar1110' 
b'Resend invitation to members by Read only user(Privilege Escalation)'
17 Aug 2017 timeline
b'Open-Xchange' disclosed a bug submitted by b'vijay_kumar1110' 
b'Unauthorized access to attachments details of Private Calendar appointments (Access control issue)'
17 Aug 2017 timeline
1 ... 516 517 518 519 520 ... 733
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM