Top10 publishers:
bobrov114 
linkks74 
geeknik71 
sp1d3rs62 
jobert54 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Badoo disclosed a bug submitted by c0rte 
No rate-limit in SERVER_SECURITY_CHECK
10 Nov 2016 timeline
LocalTapiola disclosed a bug submitted by ng1 
Content Spoofing or Text Injection (404 error page injection)
10 Nov 2016 timeline
LocalTapiola disclosed a bug submitted by tsug0d 
Reflected XSS in LTContactFormReceiver (/cs/Satellite)
10 Nov 2016 timeline
Eobot disclosed a bug submitted by mr_sharma_ 
No password length restriction
10 Nov 2016 timeline
Paragon Initiative Enterprises disclosed a bug submitted by e3amn2l 
Using plain git protocol (vulnerable to MITM)
09 Nov 2016 timeline
Paragon Initiative Enterprises disclosed a bug submitted by e3amn2l 
Missing GIT tag/commit verification in Docker
09 Nov 2016 timeline
Brave Software disclosed a bug submitted by sahiltikoo 
Denial of service(POP UP Recursion) on Brave browser
07 Nov 2016 timeline
Pornhub disclosed a bug submitted by vijay_kumar1110 Twitter
[idor] Unauthorized Read access to all the private posts(Including Photos,Videos,Gifs)
05 Nov 2016 timeline
New Relic disclosed a bug submitted by hogarth45 
Emails and alert policies can be altered by malicious users.
04 Nov 2016 timeline
New Relic disclosed a bug submitted by pavanw3b 
Host Header Injection / Cache Poisoning
04 Nov 2016 timeline
New Relic disclosed a bug submitted by cjlegacion 
Cookie Misconfiguration
04 Nov 2016 timeline
Algolia disclosed a bug submitted by punkrock 
Possilbe Sub Domain takever at prestashop.algolia.com
04 Nov 2016 timeline
Nextcloud disclosed a bug submitted by lmx 
More content spoofing through dir param in the files app
04 Nov 2016 timeline
CodeIgniter disclosed a bug submitted by syndr0me 
Link sanitation bypass in xss_clean()
04 Nov 2016 timeline
Paragon Initiative Enterprises disclosed a bug submitted by kholy 
BAD Code !
04 Nov 2016 timeline
Instacart disclosed a bug submitted by michiel 
Authorization Bypass in Delivery Chat Logs
03 Nov 2016 timeline
GitLab disclosed a bug submitted by jobert 
Ability to access all user authentication tokens, leads to RCE
03 Nov 2016 timeline
Blockchain disclosed a bug submitted by lewerkun 
Information disclosure at https://blockchain.atlassian.net
03 Nov 2016 timeline
New Relic disclosed a bug submitted by seifelsallamy 
Open redirection
03 Nov 2016 timeline
Brave Software disclosed a bug submitted by scorpyo 
[website] Script injection in newsletter signup https://brave.com/brave_youth_program_signup.html
03 Nov 2016 timeline
1 ... 280 281 282 283 284 ... 417
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM