Top10 publishers:
bobrov114 
linkks73 
geeknik71 
sp1d3rs62 
jobert52 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Legal Robot disclosed a bug submitted by shani_1 
AWS S3 website can't serve security headers, may allow clickjacking
28 Sep 2016 timeline
Ian Dunn disclosed a bug submitted by tbmnull Twitter
stored SELF xss on Basic Google Maps Placemarks Settings plugin
27 Sep 2016 timeline
Ian Dunn disclosed a bug submitted by ethnicalhacker 
Potentially vulnerable version of Apache software in and default files on https://iandunn.name/
27 Sep 2016 timeline
Ian Dunn disclosed a bug submitted by superngorks 
bypass to csv injection
27 Sep 2016 timeline
Ian Dunn disclosed a bug submitted by jshindl 
Send emails to all users using Camptix
27 Sep 2016 timeline
Uber disclosed a bug submitted by jigarthakkar39 
Physical Access to Mobile App Allows Local Attribute Updates without Authentication
27 Sep 2016 timeline
Uber disclosed a bug submitted by bobrov 
Open Redirect in m.uber.com
27 Sep 2016 timeline
Trello disclosed a bug submitted by tgpanackal 
Unvalidated/Open Redirect allowing attackers to implement phishing attack
27 Sep 2016 timeline
Shopify disclosed a bug submitted by ishwar_prasad_bhat 
Payment gateway status transferred to Shopify without authentication
27 Sep 2016 timeline
Trello disclosed a bug submitted by cablej Twitter
SSRF in account webhook (through API)
27 Sep 2016 timeline
Instacart disclosed a bug submitted by cablej Twitter
Issues with uploading list images
26 Sep 2016 timeline
Instacart disclosed a bug submitted by hussain_0x3c 
Cookie-Based Injection
26 Sep 2016 timeline
Django disclosed a bug submitted by bobrov 
CSRF protection bypass on any Django powered site via Google Analytics
26 Sep 2016 timeline
Trello disclosed a bug submitted by mubassir92 
Subdomain Take over & username enemuration
26 Sep 2016 timeline
Mail.Ru disclosed a bug submitted by bobrov 
[odnoklassniki.ru] XSS via Host
26 Sep 2016 timeline
Shopify disclosed a bug submitted by bobrov 
[apps.shopify.com] Open Redirect
26 Sep 2016 timeline
ownCloud disclosed a bug submitted by m4drob0t 
Accessable Htaccess
26 Sep 2016 timeline
Keybase disclosed a bug submitted by bobrov 
[keybase.io] Open Redirect
26 Sep 2016 timeline
New Relic disclosed a bug submitted by foundstone-kunal 
Password disclosure during signup process
25 Sep 2016 timeline
New Relic disclosed a bug submitted by todayisnew 
Sensitive information contained with New Relic APM iOS application
25 Sep 2016 timeline
1 ... 278 279 280 281 282 ... 406
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM