Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Ian Dunn' disclosed a bug submitted by b'anant' 
b'Multiple Path Disclosure'
16 Jul 2016 timeline
b'Xero' disclosed a bug submitted by b'psychomantis' 
b'Additonal stored XSS in Add note/Expected payment Date'
16 Jul 2016 timeline
b'HackerOne' disclosed a bug submitted by b'yaworsk' 
b'Report title and issue information prepopulated '
15 Jul 2016 timeline
b'Uber' disclosed a bug submitted by b'jouko' 
b'OneLogin authentication bypass on WordPress sites via XMLRPC'
15 Jul 2016 timeline
b'Keybase' disclosed a bug submitted by b'sarwarjahan' 
b'Un-handled exception leads to Information Disclosure'
15 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'secbughunter' 
b'stop serving grtp.co over HTTP'
15 Jul 2016 timeline
b'Uber' disclosed a bug submitted by b'mongo' 
b"Change any Uber user's password through /rt/users/passwordless-signup - Account Takeover (critical)"
14 Jul 2016 timeline
b'Snapchat' disclosed a bug submitted by b'notnaffy' 
b'Administrator access to a Django Administration Panel on *.sc-corp.net via bruteforced credentials'
14 Jul 2016 timeline
b'Trello' disclosed a bug submitted by b'theflofly' 
b'If a team is public, the web socket receives data about the Team visible boards'
14 Jul 2016 timeline
b'Trello' disclosed a bug submitted by b'theflofly' 
b'Using WebSocket I can always access organization data even if I am removed'
14 Jul 2016 timeline
b'FantasyTote' disclosed a bug submitted by b'ketankumar_godhani' 
b'Weak HSTS age'
14 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'ashish_goanhacker' 
b'strengthen Diffie-Hellman (DH) key exchange parameters in grtp.co'
14 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'mackstaples' 
b'suppress version in Server header on gratipay.com or grtp.co'
14 Jul 2016 timeline
b'OLX' disclosed a bug submitted by b'mefkan' 
b'XSS yaman.olx.ph'
14 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'zuh4n' 
b'Directory listening in grtp.co'
14 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'dotnick' 
b"don't leak server version of grtp.co in error pages"
14 Jul 2016 timeline
b'Paragon Initiative Enterprises' disclosed a bug submitted by b'lukasreschke' 
b'Content-type sniffing leads to stored XSS in CMS Airship on Internet Explorer '
14 Jul 2016 timeline
b'Slack' disclosed a bug submitted by b'thisishrsh' 
b'File upload over private IM channel'
13 Jul 2016 timeline
b'LocalTapiola' disclosed a bug submitted by b'mlitchfield' 
b'Blind Stored XSS Against Lahitapiola Employees - Session and Information leakage'
13 Jul 2016 timeline
b'Uber' disclosed a bug submitted by b'jutsuce' 
b'Directory Browsing and Open Git Repository on Uber Development Box '
13 Jul 2016 timeline
1 ... 617 618 619 620 621 ... 726
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM