Top10 publishers:
b'bobrov'117 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'sp1d3rs'68 
b'someonenobbd'62 
b'nyymi'55 
b'jon_bottarini'49 
b'haxta4ok00'48 
b'netfuzzer'48 

the unofficial HackerOne disclosure timeline.

X
b'Informatica' disclosed a bug submitted by b'yarbabin' 
b'[marketplace.informatica.com] - XXE'
09 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'yarbabin' 
b'[rev-app.informatica.com] - XXE via SAML'
09 Dec 2016 timeline
b'Envoy' disclosed a bug submitted by b'zephrfish' 
b'Abuse of API can Lead to DoS'
08 Dec 2016 timeline
b'Informatica' disclosed a bug submitted by b'zephrfish' 
b'[product360.informatica.com] Unauthenticated Apache Tomcat 8 Installation'
08 Dec 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'bobrov' 
b'SQL Injection /webApp/sijoitustalous_peruutus locId parameter (viestinta.lahitapiola.fi)'
08 Dec 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'bobrov' 
b'SQL Injection /webApp/oma_conf ctx parameter (viestinta.lahitapiola.fi)'
08 Dec 2016 timeline
b'HackerOne' disclosed a bug submitted by b'zseano' 
b'Bypass rate limiting on /users/password (possibly site-wide rate limit bypass?)'
08 Dec 2016 timeline
b'OLX' disclosed a bug submitted by b'123456789100' 
b'REFLECTED CROSS SITE SCRIPTING IN OLX'
08 Dec 2016 timeline
b'Gratipay' disclosed a bug submitted by b'promx' 
b'CSRF csrftoken in cookies'
07 Dec 2016 timeline
b'Instacart' disclosed a bug submitted by b'archers123' 
b'User Information sent to client through websockets'
07 Dec 2016 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'jelmer' 
b'JSBeautifier BApp: Race condition leads to memory disclosure'
07 Dec 2016 timeline
b'Trello' disclosed a bug submitted by b'esmile' 
b'SVG Uploads / Attachments can be viewed by anyone. '
06 Dec 2016 timeline
b'GitLab' disclosed a bug submitted by b'fransrosen' 
b'Mailgun misconfiguration leads to email snooping and postmaster@-access on email.mg.gitlab.com'
06 Dec 2016 timeline
b'GitLab' disclosed a bug submitted by b'jobert' 
b'State filter in IssuableFinder allows attacker to delete all issues and merge requests'
06 Dec 2016 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'benkhlifafahmi' 
b'account.ubnt.com CSRF'
05 Dec 2016 timeline
b'Nextcloud' disclosed a bug submitted by b'ahsantahir' 
b"[Nextcloud 9.0.53] Content Spoofing in 'trustDomain' parameter"
05 Dec 2016 timeline
b'Nextcloud' disclosed a bug submitted by b'madhur_bhargava' 
b'Login Hints on Admin Panel'
05 Dec 2016 timeline
b'New Relic' disclosed a bug submitted by b'martijn' 
b'CSRF vulnerability that allows an attacker to purge plugin metric data'
05 Dec 2016 timeline
b'Sucuri' disclosed a bug submitted by b'tw1sted' 
b'Administrator Access to grafana instance logstash2.sucuri.net with default credentials'
05 Dec 2016 timeline
b'Python (IBB)' disclosed a bug submitted by b'johnleitch' 
b'chain.__setstate__ Type Confusion'
05 Dec 2016 timeline
1 ... 550 551 552 553 554 ... 693
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM