Top10 publishers:
bobrov60 
isox36 
4lemon34 
zombiehelp5430 Twitter
smiegles27 Twitter
ston327 
guido26 Twitter
jobert26 
shahmeer_amir26 
ishahriyar25 

the unofficial HackerOne disclosure timeline.

X
Zomato disclosed a bug submitted by iampwned 
XSS in flashmediaelement.swf (business-blog.zomato.com)
17 Jun 2017 timeline
Zomato disclosed a bug submitted by iampwned 
MailPoet Newsletters <= 2.7.2 - Authenticated Reflected Cross-Site Scripting (XSS)
17 Jun 2017 timeline
Udemy disclosed a bug submitted by n0rb3r7 
Completed Compromise & Source Code Disclosure via Exposed Jenkins Dashboard at https://jenkins101.udemy.com
17 Jun 2017 timeline
Gratipay disclosed a bug submitted by h1_gnost 
Email Spoofing
17 Jun 2017 timeline
Discourse disclosed a bug submitted by arkadiyt 
Any authenticated user can download full list of users, including email
17 Jun 2017 timeline
Mixmax disclosed a bug submitted by syntaxerror 
Privilege escalation-User who does not have access is able to add notes to the contact
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by sp1d3rs 
Blind SQLi vulnerability in a DoD Website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by jon_bottarini 
Information disclosure vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by sp1d3rs 
Information disclosure vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by sp1d3rs 
Information disclosure vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by sp1d3rs 
Information disclosure vulnerability on a DoD website
16 Jun 2017 timeline
ExpressionEngine disclosed a bug submitted by strukt Twitter
Open redirects protection bypass
16 Jun 2017 timeline
Mixmax disclosed a bug submitted by hackedbrain 
Stored XSS in Templates>Enahance>Social Badges
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by sp1d3rs 
Information disclosure vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by korprit 
Reflected XSS vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by korprit 
Cross-site request forgery (CSRF) vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by korprit 
SQL injection vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by twicedi 
Reflected XSS vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by korprit 
Time Based SQL Injection vulnerability on a DoD website
16 Jun 2017 timeline
U.S. Dept Of Defense disclosed a bug submitted by juliocesar 
DOM Based XSS on a DoD website
16 Jun 2017 timeline
1 2 3 4 ... 198
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM