Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Cuvva' disclosed a bug submitted by b'aliv3' 
b'CSRF on cuvva.insure allows to attacker to send multiple SMS to download the app without visiting the cuvva'
23 Jul 2017 timeline
b'Dashlane' disclosed a bug submitted by b'rbcafe' 
b'[https://www.dashlane.com] Test Panel Disclosure'
21 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'sunil_yedla' 
b'Account profile shows encryption recovery box for all users'
21 Jul 2017 timeline
b'Coinbase' disclosed a bug submitted by b'mahakaal' 
b'Information disclosure same issue #176002'
21 Jul 2017 timeline
b'Shopify' disclosed a bug submitted by b'xssa' 
b'XSS in my.shopify.com in widget'
21 Jul 2017 timeline
b'Shopify' disclosed a bug submitted by b'pappan' 
b'Open Redirect in shopify app URL'
21 Jul 2017 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'phenix' 
b'[EdgeSwitch] Web GUI command injection as root with Privilege-1 and Privilege-15 users'
21 Jul 2017 timeline
b'GitLab' disclosed a bug submitted by b'edio' 
b'CSV injection in gitlab.com via issues export feature.'
21 Jul 2017 timeline
b'Airbnb' disclosed a bug submitted by b'al7311' 
b'Call back number not verified'
20 Jul 2017 timeline
b'Frans Visits Vegas' disclosed a bug submitted by b'fransrosen' 
b'Frans Visits Vegas Announcement'
20 Jul 2017 timeline
b'WakaTime' disclosed a bug submitted by b'footstep' 
b'Email Injection through Password Reset'
20 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'mostafamamdoh' 
b'Token leakage by referrer'
19 Jul 2017 timeline
b'Shopify' disclosed a bug submitted by b'inhibitor181' 
b'IDOR [partners.shopify.com] - User with ONLY Manage apps permission is able to get shops info and staff names from inside the shop'
19 Jul 2017 timeline
b'Zomato' disclosed a bug submitted by b'kuroi-sh' 
b'SQL Injection, exploitable in boolean mode'
19 Jul 2017 timeline
b'Zomato' disclosed a bug submitted by b'gerben_javado' 
b'[?????????] Hardcoded credentials in Android App'
19 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'brdoors4' 
b'Non-functional 2FA recovery codes'
19 Jul 2017 timeline
b'Mixmax' disclosed a bug submitted by b'encrypt' 
b'Blind SSRF due to img tag injection in career form'
19 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'zk34911' 
b'Users with 2FA can have multiple sessions'
19 Jul 2017 timeline
b'ThisData' disclosed a bug submitted by b'pabster' 
b'Insecure Cache-Control Leading to API key Retrieval'
18 Jul 2017 timeline
b'Mixmax' disclosed a bug submitted by b'cablej' 
b'SSRF via webhook'
18 Jul 2017 timeline
1 ... 518 519 520 521 522 ... 727
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM