Top10 publishers:
b'bobrov'117 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'sp1d3rs'68 
b'someonenobbd'62 
b'nyymi'53 
b'jon_bottarini'49 
b'haxta4ok00'48 
b'netfuzzer'48 

the unofficial HackerOne disclosure timeline.

X
b'ExpressionEngine' disclosed a bug submitted by b'strukt' 
b'Arbitrary SQL query execution and reflected XSS in the "SQL Query Form"'
18 Aug 2016 timeline
b'Ian Dunn' disclosed a bug submitted by b'dia2diab' 
b'XSS in Tagregator plugin'
18 Aug 2016 timeline
b'Ian Dunn' disclosed a bug submitted by b'jamalcom' 
b'Path Disclosure Vulnerability'
18 Aug 2016 timeline
b'Ian Dunn' disclosed a bug submitted by b'proxynwh' 
b'SSL certificate public key less than 2048 bit'
18 Aug 2016 timeline
b'Ian Dunn' disclosed a bug submitted by b'proxynwh' 
b'Brute force on wp-login'
18 Aug 2016 timeline
b'HackerOne' disclosed a bug submitted by b'troubleshooter' 
b'Requesting Mediation possible on reports that are too old for mediation'
17 Aug 2016 timeline
b'Slack' disclosed a bug submitted by b'nhavis' 
b'CSRF - Add optional two factor mobile number'
17 Aug 2016 timeline
b'Pornhub' disclosed a bug submitted by b'zephrfish' 
b'HTTP Track/Trace Method Enabled'
17 Aug 2016 timeline
b'OLX' disclosed a bug submitted by b'palashjhabak' 
b'Unauthorised access to olx.in user accounts. '
17 Aug 2016 timeline
b'HackerOne' disclosed a bug submitted by b'saeedhashem' 
b"Ability to monitor reports' submission in real time"
17 Aug 2016 timeline
b'Nextcloud' disclosed a bug submitted by b'fransrosen' 
b'Response Header injection using redirect_uri together with PHP that utilizes Header Folding according to RFC1945 and Internet Explorer 11'
17 Aug 2016 timeline
b'OLX' disclosed a bug submitted by b'niemand' 
b'SQLi in Payment Request'
16 Aug 2016 timeline
b'Pornhub' disclosed a bug submitted by b'agarri_fr' 
b'libav (used during conversion of uploaded videos) is vulnerable to SSRF attacks'
15 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'severus' 
b'[IODR] Get business trip via organization id'
15 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'issam_rabhi' 
b'Missing authorization checks leading to the exposure of ubernihao.com administrator accounts '
15 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'parth' 
b'[CRITICAL] -- Complete Account Takeover'
15 Aug 2016 timeline
b'Slack' disclosed a bug submitted by b'd0znpp' 
b"Source code leakage through GIT web access at host '52.91.137.42'"
15 Aug 2016 timeline
b'Dovecot' disclosed a bug submitted by b'koolacac' 
b'Outdated Apache Server in www.dovecot.fi is vulnerable to various attack.'
15 Aug 2016 timeline
b'OLX' disclosed a bug submitted by b'thezawad' 
b'Manipulating joinolx.com Job Vacancy alert subscription emails (HTML Injection / Script Injection)'
15 Aug 2016 timeline
b'Gratipay' disclosed a bug submitted by b'kuskumar' 
b'csrf_token cookie don\'t have the flag "HttpOnly"'
14 Aug 2016 timeline
1 ... 562 563 564 565 566 ... 680
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM