Top10 publishers:
bobrov107 
sp1d3rs54 
bigbear_38 
guido37 Twitter
bl4de37 
isox36 
geeknik35 
4lemon35 
edio34 
jobert34 

the unofficial HackerOne disclosure timeline.

X
Discourse disclosed a bug submitted by bobrov 
Web Cache Deception Attack (XSS)
18 Nov 2018 timeline
Vanilla disclosed a bug submitted by bobrov 
[allhiphop.vanillacommunities.com] XSS Request-URI
18 Nov 2018 timeline
QIWI disclosed a bug submitted by bobrov 
[*.rocketbank.ru] Web Cache Deception & XSS
18 Nov 2018 timeline
WordPress disclosed a bug submitted by opnsec 
Multiple stored XSS in WordPress
16 Nov 2018 timeline
Casper disclosed a bug submitted by mobius07 
Mixed content issues on the site https://casper.com
16 Nov 2018 timeline
HackerOne disclosed a bug submitted by npbhatter17 
Accidental Access to Programs Information via SAML Login
14 Nov 2018 timeline
MariaDB disclosed a bug submitted by dhiraj-mishra 
Incorrect Permission Assignment for Critical Resource
14 Nov 2018 timeline
Uber disclosed a bug submitted by fady_othman 
Reflected XSS on multiple uberinternal.com domains
13 Nov 2018 timeline
Uber disclosed a bug submitted by fady_othman 
Reflected XSS in https://eng.uberinternal.com and https://coeshift.corp.uber.internal/
13 Nov 2018 timeline
Uber disclosed a bug submitted by nightwatch-cybersecurity 
Privacy policy contains hardcoded link using unencrypted HTTP
13 Nov 2018 timeline
Uber disclosed a bug submitted by mdv 
Possibility to inject a malicious JavaScript code in any file on tags.tiqcdn.com results in a stored XSS on any page in most Uber domains
13 Nov 2018 timeline
Uber disclosed a bug submitted by 4lemon 
Open redirect on rush.uber.com, business.uber.com, and help.uber.com
13 Nov 2018 timeline
Uber disclosed a bug submitted by indcyberjoker 
SMS/Call spamming due to truncated phone number
13 Nov 2018 timeline
Uber disclosed a bug submitted by djangohack 
Delay of arrears notification allows Riders to take multiple rides without paying
13 Nov 2018 timeline
Uber disclosed a bug submitted by cablej Twitter
No rate limiting on https://biz.uber.com/confirm allowed an attacker to join arbitrary business.uber.com accounts
13 Nov 2018 timeline
Uber disclosed a bug submitted by nullelite 
Hack The World 2017 Top 2 Bonus
13 Nov 2018 timeline
TTS Bug Bounty disclosed a bug submitted by nuke11 
Multiple Bugs in api.data.gov/signup endpoint leads to send custom messages to Anyone
13 Nov 2018 timeline
Shopify disclosed a bug submitted by dr_dragon 
Reflected XSS on $Any$.myshopify.com/admin
13 Nov 2018 timeline
Mail.Ru disclosed a bug submitted by danila_xawdxawdx 
Shell upload in partner service
13 Nov 2018 timeline
Mail.Ru disclosed a bug submitted by akop07 
XSS in e.mail.ru
12 Nov 2018 timeline
1 2 3 4 ... 313
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM