Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'81 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'60 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Urban Dictionary' disclosed a bug submitted by b'rchase' 
b'Infinite Upvoting/Downvoting: Lockout Bypass, Plus: Exposed API Documentation'
24 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'roshanpty' 
b'User Supplied links on profile page is not validated and redirected via gratipay.'
24 Jul 2016 timeline
b'Binary.com' disclosed a bug submitted by b'roshanpty' 
b"HTML injection via 'underlying' parameter"
24 Jul 2016 timeline
b'Coinbase' disclosed a bug submitted by b'roshanpty' 
b"The 'Create a New Account' action is vulnerable to CSRF"
24 Jul 2016 timeline
b'Coinbase' disclosed a bug submitted by b'roshanpty' 
b'An adversary can overwhelm the resources by automating Forgot password/Sign Up requests'
24 Jul 2016 timeline
b'GlassWire' disclosed a bug submitted by b'xiaoyinl' 
b"Bypass GlassWire's monitoring of Hosts file"
23 Jul 2016 timeline
b'FantasyTote' disclosed a bug submitted by b'shawarkhan' 
b'Insecure password change mechanism may lead to full account takeover'
23 Jul 2016 timeline
b'FantasyTote' disclosed a bug submitted by b'ahsantahirat' 
b'No email verification required when we change email from settings'
23 Jul 2016 timeline
b'FantasyTote' disclosed a bug submitted by b'bains' 
b"Session doesn't expired after login"
23 Jul 2016 timeline
b'Uber' disclosed a bug submitted by b'netfuzzer' 
b'xss vulnerability in http://ubermovement.com/community/daniel'
21 Jul 2016 timeline
b'drchrono' disclosed a bug submitted by b's_p_q_r' 
b'Template stored XSS'
21 Jul 2016 timeline
b'ok.ru' disclosed a bug submitted by b'exploitraja' 
b'Missing proper error message.'
21 Jul 2016 timeline
b'drchrono' disclosed a bug submitted by b'cliffordtrigo' 
b'Accessing all appointments vulnerability'
21 Jul 2016 timeline
b'Mail.Ru' disclosed a bug submitted by b'c37hun' 
b'HTML Injection ?? e.mail.ru'
20 Jul 2016 timeline
b'Mail.Ru' disclosed a bug submitted by b'malcolmx' 
b'Cross Site Request Forgery (CSRF)'
20 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'sh4dow' 
b'Username .. (double dot) should be restricted or handled carefully'
20 Jul 2016 timeline
b'LeaseWeb' disclosed a bug submitted by b'arbaz_hussain' 
b'Directory Listening'
20 Jul 2016 timeline
b'Gratipay' disclosed a bug submitted by b'jackds' 
b'limit HTTP methods on other domains'
19 Jul 2016 timeline
b'Nextcloud' disclosed a bug submitted by b'bugdiscloseguy' 
b'Read-only share recipient can restore old versions of file'
19 Jul 2016 timeline
b'Nextcloud' disclosed a bug submitted by b'detroitsmash' 
b"Uploading files to a folder where invited user don't have any EDIT privilege"
19 Jul 2016 timeline
1 ... 622 623 624 625 626 ... 733
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM