Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'55 
b'ooooooo_q'49 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Yahoo!' disclosed a bug submitted by b'kenb' 
b'XSS on Every sports.yahoo.com page'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'surgent10cross' 
b'Comment Spoofing at http://suggestions.yahoo.com/detail/?prop=directory&fid=97721'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'surgent10cross' 
b'CSRF Token missing on http://baseball.fantasysports.yahoo.com/b1/127146/messages'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'surgent10cross' 
b'CSRF Token is missing on DELETE message option on http://baseball.fantasysports.yahoo.com/b1/127146/messages'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'internetwache' 
b'Open Proxy, http://www.smushit.com/ysmush.it/, 4/09/14, #SpringClean'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'quistertow' 
b'XSS in https://hk.user.auctions.yahoo.com'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'nahamsec' 
b'readble .htaccess + Source Code Disclosure (+ .SVN repository)'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'cmaruti' 
b'Infrastructure and Application Admin Interfaces (OWASP?CM?007)'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'cmaruti' 
b'TESTING FOR REFLECTED CROSS SITE SCRIPTING (OWASP?DV?001)'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'cmaruti' 
b'Testing for user enumeration (OWASP?AT?002) - https://gh.bouncer.login.yahoo.com'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'pytesus' 
b'Multiple vulnerabilities'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'bobrov' 
b'Open Redirect via Request-URI'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'jeroldcamacho' 
b'Yahoo Sports Fantasy Golf (Join Public Group)'
20 Aug 2014 timeline
b'jsDelivr' disclosed a bug submitted by b'vineet' 
b'Directory Traversal at http://staging.jsdelivr.net/'
20 Aug 2014 timeline
b'Yahoo!' disclosed a bug submitted by b'imadchabounia' 
b'caesary.yahoo.net Blind Sql Injection'
20 Aug 2014 timeline
b'WePay' disclosed a bug submitted by b'anshuman_bh' 
b'CSRF on email address operations. Also performing unintended operations. '
19 Aug 2014 timeline
b'concrete5' disclosed a bug submitted by b'melvin' 
b'Cross-Site Scripting in getMarketplacePurchaseFrame'
18 Aug 2014 timeline
b'Factor.io' disclosed a bug submitted by b'quistertow' 
b'Reflected XSS - factor.io'
18 Aug 2014 timeline
b'InVision' disclosed a bug submitted by b'pranav_hivarekar' 
b'Sensitive information in cookies'
17 Aug 2014 timeline
wont-fix
b'DigitalSellz' disclosed a bug submitted by b'bitquark' 
b'Verbose SQL error messages'
17 Aug 2014 timeline
1 ... 687 688 689 690 691 ... 715
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM