Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'WakaTime' disclosed a bug submitted by b'asaxena2190' 
b'Impersonation of Wakatime user using Invitation functionality.'
06 Aug 2017 timeline
b'Starbucks' disclosed a bug submitted by b'ynsy' 
b'Full Api Access and Run All Functions via Starbucks App'
06 Aug 2017 timeline
b'Dropbox' disclosed a bug submitted by b'leovin' 
b'Missing URL sanitization in comments can be leveraged for phishing'
04 Aug 2017 timeline
b'Khan Academy' disclosed a bug submitted by b'utkarsh123' 
b'Password Functionality not working correctly'
03 Aug 2017 timeline
b'Rockstar Games' disclosed a bug submitted by b'netfuzzer' 
b'CSRF Vulnerability allows attackers to steal SocialClub private token.'
03 Aug 2017 timeline
b'Kaspersky Lab' disclosed a bug submitted by b'huntman' 
b'In App purchase Hack '
03 Aug 2017 timeline
b'Phabricator' disclosed a bug submitted by b'luke081515' 
b'Credential gets exposed'
02 Aug 2017 timeline
b'Coinbase' disclosed a bug submitted by b'mohammad_obaid' 
b'Device confirmation Flaw'
02 Aug 2017 timeline
b'Revive Adserver' disclosed a bug submitted by b'pavanw3b' 
b'Reflected XSS in Step 2 of the Installation'
02 Aug 2017 timeline
b'Revive Adserver' disclosed a bug submitted by b'pavanw3b' 
b'Stored XSS on Admin Access Page - Email field'
02 Aug 2017 timeline
b'Revive Adserver' disclosed a bug submitted by b'pavanw3b' 
b'Reflected XSS on Zones > Invocation Code'
02 Aug 2017 timeline
b'Revive Adserver' disclosed a bug submitted by b'pavanw3b' 
b'Weak Forgot Password implementation'
02 Aug 2017 timeline
b'Boozt Fashion AB' disclosed a bug submitted by b'ramsexy' 
b'Email link poisoning / Host header attack'
01 Aug 2017 timeline
b'Boozt Fashion AB' disclosed a bug submitted by b'stefanofindsbugs' 
b'Reflected XSS on www.boozt.com'
01 Aug 2017 timeline
b'WakaTime' disclosed a bug submitted by b'tikoo_sahil' 
b"Bypassing Access control, changing owner's name in a private leaderboard"
31 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'goodhackonly' 
b'Missing link to TOTP manual enroll option'
31 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'goodhackonly' 
b'Enhancement: email confirmation for 2FA recovery'
31 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'gujjuboy10x00' 
b'showing Joined time function design issue '
31 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'japzdivino' 
b'2FA Error Handling on Google Authenticator'
31 Jul 2017 timeline
b'Legal Robot' disclosed a bug submitted by b'smziaurrashid' 
b'Lack of input validation in e-mail & user name, job title, company name field'
31 Jul 2017 timeline
1 ... 529 530 531 532 533 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM