Top10 publishers:
bobrov107 
sp1d3rs54 
jobert44 
bl4de39 
bigbear_38 
guido37 Twitter
isox36 
geeknik35 
4lemon35 
edio34 

the unofficial HackerOne disclosure timeline.

X
LibSass disclosed a bug submitted by richo 
type confusion in Sass::ParserState::ParserState(Sass::ParserState const&)
11 Jun 2015 timeline
OpenSSL disclosed a bug submitted by ctz 
Malformed ECParameters causes infinite loop
11 Jun 2015 timeline
Coin.Space disclosed a bug submitted by shubham 
SMTP protection not used
10 Jun 2015 timeline
HackerOne disclosed a bug submitted by ashesh 
Potential denial of service in hackerone.com/<program>/reward_settings
10 Jun 2015 timeline
HackerOne disclosed a bug submitted by ashesh 
mailto: link injection on https://hackerone.com/directory
10 Jun 2015 timeline
Shopify disclosed a bug submitted by bobrov 
[www.*.myshopify.com] CRLF Injection
10 Jun 2015 timeline
Shopify disclosed a bug submitted by 4lemon 
Force 500 Internal Server Error on any shop (for one user)
09 Jun 2015 timeline
Shopify disclosed a bug submitted by killr0x33d Twitter
XSS on support.shopify.com
09 Jun 2015 timeline
Dropbox disclosed a bug submitted by missoum1307 
XSS in dropbox main domain
09 Jun 2015 timeline
Udemy disclosed a bug submitted by mthirup 
teach.udemy.com log poison vulnerability through wordpress debug.log being publically available
09 Jun 2015 timeline
Shopify disclosed a bug submitted by nismo 
XSS in myshopify.com Admin site in TAX Overrides
09 Jun 2015 timeline
MapLogin disclosed a bug submitted by dia2diab 
Not Completed Accounts Take Over (Urgent bug)
09 Jun 2015 timeline
HackerOne disclosed a bug submitted by janpaul123 
Report title autocompletion
08 Jun 2015 timeline
HackerOne disclosed a bug submitted by robots-txt 
Flawed account creation process allows registration of usernames corresponding to existing file names
08 Jun 2015 timeline
HackerOne disclosed a bug submitted by tomvg Twitter
Privilege escalation..., or not?!
08 Jun 2015 timeline
HackerOne disclosed a bug submitted by mikebrooks 
SPF whitelist of mandrill leads to email forgery
08 Jun 2015 timeline
HackerOne disclosed a bug submitted by antrax 
Reopen Disable Accounts/ Hidden Access After Disable
08 Jun 2015 timeline
concrete5 disclosed a bug submitted by egix 
Multiple Reflected Cross Site Scripting Vulnerabilities in Concrete5 version 5.7.3.1
06 Jun 2015 timeline
concrete5 disclosed a bug submitted by egix 
Sendmail Remote Code Execution Vulnerability in Concrete5 version 5.7.3.1
06 Jun 2015 timeline
WordPoints disclosed a bug submitted by vkc 
Rank Creation function not validating user inputs.
04 Jun 2015 timeline
wont-fix
1 ... 282 283 284 285 286 ... 333
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM