Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'81 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Romit' disclosed a bug submitted by b'crab' 
b'No rate limit which leads to "Users information Disclosure" including verfification documents etc.'
27 Nov 2015 timeline
b'Romit' disclosed a bug submitted by b'crab' 
b'GA code not verified on the server side allows sending Verification Documents on behalf of another user'
27 Nov 2015 timeline
b'Romit' disclosed a bug submitted by b'crab' 
b'IDOR on remoing Share'
27 Nov 2015 timeline
b'Romit' disclosed a bug submitted by b'crab' 
b'The csrf token remains same after user logs in'
26 Nov 2015 timeline
b'Romit' disclosed a bug submitted by b'crab' 
b'Server responds with the server error logs on account creation'
26 Nov 2015 timeline
b'Romit' disclosed a bug submitted by b'crab' 
b'HTML injection in email sent by romit.io'
26 Nov 2015 timeline
b'Romit' disclosed a bug submitted by b'crab' 
b'Potential for financial loss, negative Values for "Buy fee" and "Sell Fee"'
26 Nov 2015 timeline
b'InVision' disclosed a bug submitted by b'psychomantis' 
b'Reflective XSS in projects.invisionapp.com'
23 Nov 2015 timeline
b'InVision' disclosed a bug submitted by b'anik' 
b'X-Frame-Options Header Not Set'
23 Nov 2015 timeline
b'Twitter' disclosed a bug submitted by b'filedescriptor' 
b'XSS on OAuth authorize/authenticate endpoint'
20 Nov 2015 timeline
b'Automattic' disclosed a bug submitted by b'strukt' 
b'CSV Injection in polldaddy.com'
20 Nov 2015 timeline
b'Shopify' disclosed a bug submitted by b'brakhane' 
b"An administrator without the 'Settings' permission is able to see payment gateways"
18 Nov 2015 timeline
b'Shopify' disclosed a bug submitted by b'rms' 
b"Apps can access 'channels' beta api"
18 Nov 2015 timeline
b'Shopify' disclosed a bug submitted by b'zombiehelp54' 
b'deleted staff member can add his amazon marketplace web services account to the store.'
18 Nov 2015 timeline
b'DigitalSellz' disclosed a bug submitted by b's_p_q_r' 
b"Own downloading link isn't properly checked in the email template"
16 Nov 2015 timeline
b'Mail.Ru' disclosed a bug submitted by b'aesteral' 
b'XSS: https://light.mail.ru/compose, https://m.mail.ru/compose/[id]/reply ??? ?????? ?? ??????????? ??????? ?????????????? ??????'
16 Nov 2015 timeline
b'Binary.com' disclosed a bug submitted by b'gjavado' 
b'Http Response Splitting - Validate link'
15 Nov 2015 timeline
b'Twitter' disclosed a bug submitted by b'sandeep100928' 
b'Problem with OAuth'
14 Nov 2015 timeline
b'HackerOne' disclosed a bug submitted by b'killr0x33d' 
b'Send AJAX request to external domain'
14 Nov 2015 timeline
b'HackerOne' disclosed a bug submitted by b'ragnar' 
b'Cross-domain AJAX request'
14 Nov 2015 timeline
1 ... 662 663 664 665 666 ... 732
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM