Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'55 
b'ooooooo_q'49 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Pornhub' disclosed a bug submitted by b'agarri_fr' 
b'libav (used during conversion of uploaded videos) is vulnerable to SSRF attacks'
15 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'severus' 
b'[IODR] Get business trip via organization id'
15 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'issam_rabhi' 
b'Missing authorization checks leading to the exposure of ubernihao.com administrator accounts '
15 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'parth' 
b'[CRITICAL] -- Complete Account Takeover'
15 Aug 2016 timeline
b'Slack' disclosed a bug submitted by b'd0znpp' 
b"Source code leakage through GIT web access at host '52.91.137.42'"
15 Aug 2016 timeline
b'Dovecot' disclosed a bug submitted by b'koolacac' 
b'Outdated Apache Server in www.dovecot.fi is vulnerable to various attack.'
15 Aug 2016 timeline
b'OLX' disclosed a bug submitted by b'thezawad' 
b'Manipulating joinolx.com Job Vacancy alert subscription emails (HTML Injection / Script Injection)'
15 Aug 2016 timeline
b'Gratipay' disclosed a bug submitted by b'kuskumar' 
b'csrf_token cookie don\'t have the flag "HttpOnly"'
14 Aug 2016 timeline
b'Zomato' disclosed a bug submitted by b'spam404' 
b'XSS on zomato.com'
14 Aug 2016 timeline
b'Gratipay' disclosed a bug submitted by b'mmyamin' 
b'bring grtp.co up to A grade on SSLLabs'
13 Aug 2016 timeline
b'Instacart' disclosed a bug submitted by b'introvertmac' 
b'CSRF with redeem coupon request '
13 Aug 2016 timeline
b'Veris' disclosed a bug submitted by b'ak1t4' 
b'Internal server error 500 at log.veris.in '
13 Aug 2016 timeline
b'New Relic' disclosed a bug submitted by b'praseudo' 
b'Login CSRF vulnerability'
12 Aug 2016 timeline
b'New Relic' disclosed a bug submitted by b'rahul_ch' 
b'All Active user sessions should be destroyed when user change his password!'
12 Aug 2016 timeline
b'concrete5' disclosed a bug submitted by b'khalidamin511' 
b'CSRF Full Account Takeover'
12 Aug 2016 timeline
b'Twitter' disclosed a bug submitted by b'filedescriptor' 
b'Bypassing callback_url validation on Digits'
12 Aug 2016 timeline
b'Twitter' disclosed a bug submitted by b'filedescriptor' 
b"Bypassing Digits web authentication's host validation with HPP"
12 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'pooja_lodaya' 
b'User Enumeration and Information Disclosure'
12 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'enmach' 
b'Brute Force Amplification Attack'
12 Aug 2016 timeline
b'Uber' disclosed a bug submitted by b'ak1t4' 
b'Content injection on 404 error page at faspex.uber.com'
12 Aug 2016 timeline
1 ... 598 599 600 601 602 ... 715
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM