Top10 publishers:
bobrov109 
linkks64 
sp1d3rs56 
jobert48 
guido42 Twitter
bl4de39 
bigbear_38 
isox36 
geeknik35 
4lemon35 

the unofficial HackerOne disclosure timeline.

X
Badoo disclosed a bug submitted by ngocdh 
Password modification without knowing actual password & httpOnly bypass
12 Apr 2016 timeline
Badoo disclosed a bug submitted by kenan 
Insecure Direct Object Reference on badoo.com
12 Apr 2016 timeline
Badoo disclosed a bug submitted by zombiehelp54 Twitter
[CRITICAL] Full account takeover using CSRF
12 Apr 2016 timeline
OpenSSL disclosed a bug submitted by hanno 
BN_mod_exp may produce incorrect results on x86_64 (CVE-2015-3193)
12 Apr 2016 timeline
ownCloud disclosed a bug submitted by kalihat007 
Cross site scripting in apps.owncloud.com
12 Apr 2016 timeline
APITest.IO disclosed a bug submitted by uyga 
beta version reveals paths, environment variables and partially files contents
12 Apr 2016 timeline
Dropbox disclosed a bug submitted by super_hack 
Possible SQL injection can cause denial of service attack
10 Apr 2016 timeline
Shopify disclosed a bug submitted by virtualhunter 
XSS on hardware.shopify.com
09 Apr 2016 timeline
ownCloud disclosed a bug submitted by nehalh13 
X-XSS-Protection not enabled
09 Apr 2016 timeline
Ubiquiti Networks disclosed a bug submitted by 93c08539 
Other Buffer Overflow in PHP of the AirMax Products
07 Apr 2016 timeline
Ubiquiti Networks disclosed a bug submitted by 93c08539 
Yet another Buffer Overflow in PHP of the AirMax Products
07 Apr 2016 timeline
Zomato disclosed a bug submitted by pr0tagon1st 
Persistent input validation mail encoding vulnerability in the "just followed you" email notification.
07 Apr 2016 timeline
Mail.Ru disclosed a bug submitted by seifelsallamy 
VERY DANGEROUS XSS STORED inside emails
07 Apr 2016 timeline
New Relic disclosed a bug submitted by xenonstory 
Old CAPTCHA offers no protection
07 Apr 2016 timeline
Trello disclosed a bug submitted by theflofly 
Payments informations are sent to the webhook when a team changes its visibility
07 Apr 2016 timeline
Gratipay disclosed a bug submitted by shahzaib-shani 
prevent content spoofing on /search
06 Apr 2016 timeline
Uber disclosed a bug submitted by pavanw3b 
Reflected XSS on Uber.com careers
06 Apr 2016 timeline
Uber disclosed a bug submitted by ddworken 
XSS in getrush.uber.com
06 Apr 2016 timeline
Uber disclosed a bug submitted by ddworken 
HTML Escaping Error in the 404 Page on developer.uber.com/docs/
06 Apr 2016 timeline
Uber disclosed a bug submitted by orange 
uber.com may RCE by Flask Jinja2 Template Injection
06 Apr 2016 timeline
1 ... 276 277 278 279 280 ... 361
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM