Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Mail.Ru' disclosed a bug submitted by b'bigbear_' 
b'[allods.mail.ru] Reflected XSS'
27 Mar 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'bigbear_' 
b'[w1.dwar.ru] Core Dump'
27 Mar 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'bigbear_' 
b'[otus.p.mail.ru] Full Path Disclosure'
27 Mar 2017 timeline
b'QIWI' disclosed a bug submitted by b'bobrov' 
b'[qiwi.com] .bash_history'
27 Mar 2017 timeline
b'QIWI' disclosed a bug submitted by b'4lemon' 
b'Stored xss in agent.qiwi.com'
27 Mar 2017 timeline
b'HackerOne' disclosed a bug submitted by b'ak1t4' 
b'Subdomain takeover at info.hacker.one'
27 Mar 2017 timeline
b'HackerOne' disclosed a bug submitted by b'shailesh4594' 
b'Limited Open redirection using SSO-SAML'
26 Mar 2017 timeline
b'HackerOne' disclosed a bug submitted by b'aaron_costello' 
b'Google Analytics could be used as CSP bypass for data exfiltration on hackerone.com'
26 Mar 2017 timeline
b'Udemy' disclosed a bug submitted by b'caffeinewriter' 
b"Able to view others' gifts on /gift/share URL, giftId is predictable, and easy to manipulate"
26 Mar 2017 timeline
b'Twitter' disclosed a bug submitted by b'r3ligious' 
b'Attacker can get vine repost user all informations even Ip address and location .'
25 Mar 2017 timeline
b'CloudFlare' disclosed a bug submitted by b'bobrov' 
b'[http2.cloudflare.com] Open Redirect'
24 Mar 2017 timeline
b'Harvest' disclosed a bug submitted by b'zuh4n' 
b"Cookie Injection at 'harvestapp.com'"
24 Mar 2017 timeline
b'OWOX, Inc.' disclosed a bug submitted by b'haxormad' 
b'Subdomain takeover in many subdomains'
24 Mar 2017 timeline
b'Airbnb' disclosed a bug submitted by b'dr-cdqh' 
b'Nginx Version Disclosure'
23 Mar 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'bagipro' 
b'Android - Possible to intercept broadcasts about uploaded files'
23 Mar 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'ryudox' 
b'Server version/OS type disclosure via HTTP Response Header'
23 Mar 2017 timeline
b'Blockchain' disclosed a bug submitted by b'cloudyvirus' 
b'HTTP Header Injection/HTTP_Response_Splitting'
23 Mar 2017 timeline
b'Gratipay' disclosed a bug submitted by b'valievkarim' 
b'upgrade Aspen on inside.gratipay.com to pick up CR injection fix'
22 Mar 2017 timeline
b'Nextcloud' disclosed a bug submitted by b'lukasreschke' 
b'Reflected XSS in U2F plugin by shipping the example endpoints'
22 Mar 2017 timeline
b'Xero' disclosed a bug submitted by b'4lemon' 
b'stored xss issue in folder name on go.xero.com/Docs/Folders'
21 Mar 2017 timeline
1 ... 571 572 573 574 575 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM