Top10 publishers:
bobrov114 
linkks75 
geeknik72 
sp1d3rs63 
jobert57 
netfuzzer47 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 

the unofficial HackerOne disclosure timeline.

X
Informatica disclosed a bug submitted by s_p_q_r 
[marketplace.informatica.com] Profile stored XSS
19 Apr 2017 timeline
VK.com disclosed a bug submitted by mandy1394 
Missing Server Side Rate Limiting can Lead to VK Account Take over
19 Apr 2017 timeline
Homebrew disclosed a bug submitted by mrr3boot 
Stack Trace on jenkins.brew.sh
19 Apr 2017 timeline
Homebrew disclosed a bug submitted by neutrinoguy 
Server version disclosure on [jenkins.brew.sh]
19 Apr 2017 timeline
ownCloud disclosed a bug submitted by alykode 
User Information Disclosure via REST API
19 Apr 2017 timeline
Ubiquiti Networks disclosed a bug submitted by alykode 
200 http code in 403 forbidden directories on main Ubnt.com domain
19 Apr 2017 timeline
GlobaLeaks disclosed a bug submitted by secure_world 
Information Disclosure
19 Apr 2017 timeline
Homebrew disclosed a bug submitted by zephrfish Twitter
[https://jenkins.brew.sh] Jenkins in Debug Mode with Stack Traces Enabled
19 Apr 2017 timeline
Homebrew disclosed a bug submitted by smit 
Host header Injection
19 Apr 2017 timeline
Nextcloud disclosed a bug submitted by hanno 
bug reporting template encourages users to paste config file with passwords
19 Apr 2017 timeline
shopify-scripts disclosed a bug submitted by icanthack 
SIGSEGV - mrb_obj_value
19 Apr 2017 timeline
Nextcloud disclosed a bug submitted by j3- 
CSRF token validation is missing
19 Apr 2017 timeline
Nextcloud disclosed a bug submitted by jerusha 
Content Spoofing/Text Injection in nextcloud.com
19 Apr 2017 timeline
ok.ru disclosed a bug submitted by cyberboy 
cross siite scripting in the blog
17 Apr 2017 timeline
Mail.Ru disclosed a bug submitted by afinepl 
Stored XSS in e.mail.ru (payload affect multiple users)
17 Apr 2017 timeline
shopify-scripts disclosed a bug submitted by minhrau 
Memory corrouption in mrb_gc_mark
17 Apr 2017 timeline
Robinhood disclosed a bug submitted by d04k34d3v1l 
httponly flag not set + csrftoken in url
16 Apr 2017 timeline
BrickFTP disclosed a bug submitted by eboda Twitter
File access controls incorrectly enforced for files shared via QuickLink - Unshared files can be accessed
16 Apr 2017 timeline
Gratipay disclosed a bug submitted by whit537 
Harden resend throttling
16 Apr 2017 timeline
Imgur disclosed a bug submitted by orange 
Remote Code Execution on Git.imgur-dev.com
16 Apr 2017 timeline
1 ... 271 272 273 274 275 ... 448
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM