Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Ubiquiti Networks' disclosed a bug submitted by b'phenix' 
b'[EdgeSwitch] Web GUI command injection as root with Privilege-1 and Privilege-15 users'
21 Jul 2017 timeline
b'GitLab' disclosed a bug submitted by b'edio' 
b'CSV injection in gitlab.com via issues export feature.'
21 Jul 2017 timeline
b'Airbnb' disclosed a bug submitted by b'al7311' 
b'Call back number not verified'
20 Jul 2017 timeline
b'Frans Visits Vegas' disclosed a bug submitted by b'fransrosen' 
b'Frans Visits Vegas Announcement'
20 Jul 2017 timeline
b'WakaTime' disclosed a bug submitted by b'footstep' 
b'Email Injection through Password Reset'
20 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'mostafamamdoh' 
b'Token leakage by referrer'
19 Jul 2017 timeline
b'Shopify' disclosed a bug submitted by b'inhibitor181' 
b'IDOR [partners.shopify.com] - User with ONLY Manage apps permission is able to get shops info and staff names from inside the shop'
19 Jul 2017 timeline
b'Zomato' disclosed a bug submitted by b'kuroi-sh' 
b'SQL Injection, exploitable in boolean mode'
19 Jul 2017 timeline
b'Zomato' disclosed a bug submitted by b'gerben_javado' 
b'[?????????] Hardcoded credentials in Android App'
19 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'brdoors4' 
b'Non-functional 2FA recovery codes'
19 Jul 2017 timeline
b'Mixmax' disclosed a bug submitted by b'encrypt' 
b'Blind SSRF due to img tag injection in career form'
19 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'zk34911' 
b'Users with 2FA can have multiple sessions'
19 Jul 2017 timeline
b'ThisData' disclosed a bug submitted by b'pabster' 
b'Insecure Cache-Control Leading to API key Retrieval'
18 Jul 2017 timeline
b'Mixmax' disclosed a bug submitted by b'cablej' 
b'SSRF via webhook'
18 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'babayaga_' 
b'Intercom chat session information persists after logout'
18 Jul 2017 timeline
b'WakaTime' disclosed a bug submitted by b'3thic4l' 
b'No rate limit on creating private leaderboards.'
18 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'fletcherr' 
b'User enumeration'
18 Jul 2017 timeline
b'WordPress' disclosed a bug submitted by b'skansing' 
b'Wordpress 4.7.2 - Two XSS in Media Upload when file too large.'
17 Jul 2017 timeline
b'WordPress' disclosed a bug submitted by b'skansing' 
b'Infrastructure - Photon - SSRF'
17 Jul 2017 timeline
b'Slack' disclosed a bug submitted by b'bagipro' 
b'Access of Android protected components via embedded intent'
17 Jul 2017 timeline
1 ... 529 530 531 532 533 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM