Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Brave Software' disclosed a bug submitted by b'ibram' 
b'[ios] Address bar spoofing in Brave for iOS'
25 Oct 2016 timeline
b'Pornhub' disclosed a bug submitted by b'mikkz' 
b'Private Photo Disclosure - /user/stream_photo_attach?load=album&id= endpoint'
25 Oct 2016 timeline
b'Harvest' disclosed a bug submitted by b'pradeepch99' 
b'CSRF token fixation in Sign in with Google'
25 Oct 2016 timeline
b'Sucuri' disclosed a bug submitted by b'bobrov' 
b'[support.sucuri.net] CRLF Injection'
24 Oct 2016 timeline
b'QIWI' disclosed a bug submitted by b'bobrov' 
b'[qiwi.com] Open Redirect'
24 Oct 2016 timeline
b'QIWI' disclosed a bug submitted by b'bobrov' 
b'CRLF Injection [ishop.qiwi.com]'
24 Oct 2016 timeline
b'Vimeo' disclosed a bug submitted by b'bobrov' 
b'[vimeopro.com] CRLF Injection'
24 Oct 2016 timeline
b'Boozt Fashion AB' disclosed a bug submitted by b'zephrfish' 
b'Potential Subdomain Takeover Possible'
22 Oct 2016 timeline
b'Twitter' disclosed a bug submitted by b'punkrock' 
b'Full Path Disclosure at 27.prd.vine.co'
21 Oct 2016 timeline
b'Yelp' disclosed a bug submitted by b'youssefmahmoud' 
b'Bybass The Closing of the account and logged again to your account'
21 Oct 2016 timeline
b'Uber' disclosed a bug submitted by b'rubyroobs' 
b'Users can falsely declare their own Uber account info on the monthly billing application'
20 Oct 2016 timeline
b'Mindoktor' disclosed a bug submitted by b'aiacobelli' 
b'Vulnerable Mobile Phone configuration'
20 Oct 2016 timeline
b'OLX' disclosed a bug submitted by b'ak1t4' 
b'Reflected XSS at m.olx.ph'
20 Oct 2016 timeline
b'OLX' disclosed a bug submitted by b'mefkan' 
b'XSS and HTML Injection https://sharjah.dubizzle.com/'
20 Oct 2016 timeline
b'OLX' disclosed a bug submitted by b'mefkan' 
b'XSS and Open Redirect on https://jobs.dubizzle.com/'
20 Oct 2016 timeline
b'OLX' disclosed a bug submitted by b'url' 
b'Name, email, phone and more disclosure on user ID (API)'
20 Oct 2016 timeline
b'OLX' disclosed a bug submitted by b'shield' 
b'Reflected Cross Site scripting Attack (XSS)'
20 Oct 2016 timeline
b'OLX' disclosed a bug submitted by b'dsopas' 
b'Stored XSS on contact name'
20 Oct 2016 timeline
b'Brave Software' disclosed a bug submitted by b'tushu' 
b'DOS in browser using window.print() function'
20 Oct 2016 timeline
b'Slack' disclosed a bug submitted by b'secalert' 
b'Authentication bypass leads to sensitive data exposure (token+secret)'
19 Oct 2016 timeline
1 ... 607 608 609 610 611 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM