Top10 publishers:
bobrov68 
sp1d3rs52 
bigbear_37 
isox36 
guido36 Twitter
edio34 
4lemon34 
zombiehelp5431 Twitter
ysx28 
haquaman27 

the unofficial HackerOne disclosure timeline.

X
Veris disclosed a bug submitted by itly 
Critical IDOR - Get anyone's Terminal Data remotely
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Password reset link is not Expiring
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Multiple Stored XSS
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Missing Server Side Validation of CSRF Middleware Token in Change Password Request
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Multiple Stored XSS on Sanbox.veris.in through Veris Frontdesk Android App
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Critical IDOR - Can select any Parent while creating new Venue
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Critical IDOR - Get Rules of any organization remotely
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Critical IDOR - Make Rule for Any Group & Any Venue remotely
12 Jun 2016 timeline
Veris disclosed a bug submitted by itly 
Critical IDOR - Get venue data of any organization remotely
12 Jun 2016 timeline
Uber disclosed a bug submitted by r0t1v 
Enumerating userIDs with phone numbers
11 Jun 2016 timeline
Moneybird disclosed a bug submitted by krankopwnz Twitter
Reflected XSS in Backend search
11 Jun 2016 timeline
Sucuri disclosed a bug submitted by jackds 
CRLF/HTTP header injection www.sucuri.net
10 Jun 2016 timeline
Badoo disclosed a bug submitted by nikitchenko 
????????? ????????? ???????? ???????????
09 Jun 2016 timeline
Binary.com disclosed a bug submitted by ameer0x0a 
CJ vulnerability in subdomain
09 Jun 2016 timeline
Trello disclosed a bug submitted by thezawad Twitter
XSS in Jetpack plugin
08 Jun 2016 timeline
LocalTapiola disclosed a bug submitted by billy_blaze 
Possibly big authorization problem in Lähitapiola´s varainhoito
08 Jun 2016 timeline
Veris disclosed a bug submitted by footstep 
Unauthenticated CSRF(User can input any value for CSRF Token)
08 Jun 2016 timeline
Phabricator disclosed a bug submitted by fnqgpc 
Full path disclosure
08 Jun 2016 timeline
HackerOne disclosed a bug submitted by c666a323be94d57 
RCE in profile picture upload
08 Jun 2016 timeline
Coinbase disclosed a bug submitted by anik 
Transaction Pending Via Ip Change
07 Jun 2016 timeline
1 ... 175 176 177 178 179 ... 272
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM