Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Coursera' disclosed a bug submitted by b'secalert' 
b'XSS in https://www.coursera.org/courses/'
14 Sep 2016 timeline
b'Boozt Fashion AB' disclosed a bug submitted by b'zephrfish' 
b'Instance of Apache Vulnerable to Several Issues'
14 Sep 2016 timeline
b'Bime' disclosed a bug submitted by b'agarri_fr' 
b'SSRF in the Connector Designer (REST and Elastic Search)'
14 Sep 2016 timeline
b'Bime' disclosed a bug submitted by b'agarri_fr' 
b'The JDBC driver used by the Vertica connector allows to create files on the backends'
14 Sep 2016 timeline
b'Bime' disclosed a bug submitted by b'agarri_fr' 
b'XXE in the Connector Designer'
14 Sep 2016 timeline
b'Nextcloud' disclosed a bug submitted by b'spetr0x' 
b'Unauthenticated Stored xss '
13 Sep 2016 timeline
b'Instacart' disclosed a bug submitted by b'sameoldstory' 
b"Fetch private list metadata and any user's personal name"
12 Sep 2016 timeline
b'Instacart' disclosed a bug submitted by b'corb3nik' 
b'Hyperlink Injection in Friend Invitation Emails'
12 Sep 2016 timeline
b'Instacart' disclosed a bug submitted by b'cablej' 
b'Missing rel=noreferrer tag allows link in list to change url of currently open tab'
12 Sep 2016 timeline
b'Instacart' disclosed a bug submitted by b'mefkan' 
b'Image Upload Path Disclosure'
12 Sep 2016 timeline
b'Legal Robot' disclosed a bug submitted by b'cablej' 
b'User Information sent to client through websockets'
12 Sep 2016 timeline
b'Legal Robot' disclosed a bug submitted by b'cablej' 
b'User Information leak allows user to bypass email verification.'
12 Sep 2016 timeline
b'Pornhub' disclosed a bug submitted by b'zephrfish' 
b'[crossdomain.xml] Dangerous Flash Cross-Domain Policy'
12 Sep 2016 timeline
b'Instacart' disclosed a bug submitted by b'cablej' 
b'Race Condition in Redeeming Coupons'
12 Sep 2016 timeline
b'Instacart' disclosed a bug submitted by b'clarck-owen' 
b'Host Header Injection/Redirection in: https://www.instacart.com/'
11 Sep 2016 timeline
b'Harvest' disclosed a bug submitted by b'eboda' 
b'Stored XSS on invoice, executing on any subdomain'
10 Sep 2016 timeline
b'Harvest' disclosed a bug submitted by b'eboda' 
b'S3 bucket takeover due to proxy.harvestfiles.com'
10 Sep 2016 timeline
b'Boozt Fashion AB' disclosed a bug submitted by b'r4hul-ch' 
b'No csrf protection on logout'
10 Sep 2016 timeline
b'Boozt Fashion AB' disclosed a bug submitted by b'm726a786' 
b'User Enumeration. '
10 Sep 2016 timeline
b'Harvest' disclosed a bug submitted by b'0xamir' 
b'Users enumeration is possible through cycling through recurring[client_id] argument value.'
10 Sep 2016 timeline
1 ... 632 633 634 635 636 ... 756
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM