Top10 publishers:
bobrov114 
linkks73 
geeknik70 
sp1d3rs62 
jobert51 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Uber disclosed a bug submitted by ak1t4 
Content injection on 404 error page at faspex.uber.com
12 Aug 2016 timeline
Uber disclosed a bug submitted by orange 
CBC "cut and paste" attack may cause Open Redirect(even XSS)
12 Aug 2016 timeline
Uber disclosed a bug submitted by ddworken 
Enumeration of Invite Codes Allows for Estimating Number of Uber Riders
12 Aug 2016 timeline
Twitter disclosed a bug submitted by mazen160 
XSS in the "Poll" Feature on Twitter.com
12 Aug 2016 timeline
Uber disclosed a bug submitted by albinowax 
Stored XSS on developer.uber.com via admin account compromise
12 Aug 2016 timeline
Mail.Ru disclosed a bug submitted by paresh_parmar 
XSS at af.attachmail.ru
12 Aug 2016 timeline
OLX disclosed a bug submitted by konqi 
Arbitrary File Reading
12 Aug 2016 timeline
Uber disclosed a bug submitted by nikhil_patil 
Avoiding Surge Pricing
11 Aug 2016 timeline
Ubiquiti Networks disclosed a bug submitted by enmach 
Reflected XSS in scores.ubnt.com
11 Aug 2016 timeline
Keybase disclosed a bug submitted by franjkovic 
Race conditions can be used to bypass invitation limit
10 Aug 2016 timeline
Trello disclosed a bug submitted by mefkan 
Sending Unlimited Mails To Anybody With Easy Social Share Buttons Plugin
10 Aug 2016 timeline
Trello disclosed a bug submitted by mefkan 
XSS and Open-Redirect via SVG
10 Aug 2016 timeline
Trello disclosed a bug submitted by rajauzairabdullah 
Verification Code Reused For activating 2FA
10 Aug 2016 timeline
Maximum disclosed a bug submitted by linkks 
Blind SQL Injection
10 Aug 2016 timeline
Coinbase disclosed a bug submitted by rajauzairabdullah 
Create Multiple Account Using Similar X-CSRF token
09 Aug 2016 timeline
HackerOne disclosed a bug submitted by xsserboiii 
Reward Money Leakage
09 Aug 2016 timeline
SecNews disclosed a bug submitted by malcolmx 
Content spoofing due to the improper behavior of the not-found message
09 Aug 2016 timeline
SecNews disclosed a bug submitted by sameoldstory 
Querying private posts and changing post meta
09 Aug 2016 timeline
Shopify disclosed a bug submitted by vijay_kumar1110 Twitter
Delete/modify your own comment after limited access(IDOR)
09 Aug 2016 timeline
Shopify disclosed a bug submitted by vijay_kumar1110 Twitter
Staff member can delete Private Apps
09 Aug 2016 timeline
1 ... 275 276 277 278 279 ... 391
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM