Top10 publishers:
bobrov114 
linkks74 
geeknik71 
sp1d3rs62 
jobert54 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Nextcloud disclosed a bug submitted by bastianwelfrid 
Arbitrary File Upload in Logo & Log in image Theming setting.
05 Oct 2016 timeline
Trello disclosed a bug submitted by theflofly 
File access using image tragick
05 Oct 2016 timeline
WebSummit disclosed a bug submitted by rubyroobs 
Reflected xss on websummit.net
04 Oct 2016 timeline
ok.ru disclosed a bug submitted by hamooda_anonphantom 
Xss in m.ok.ru
04 Oct 2016 timeline
Harvest disclosed a bug submitted by eboda Twitter
Leak of all project names and all user names , even across applications
04 Oct 2016 timeline
RubyGems disclosed a bug submitted by c0rte 
Password Reset emails missing TLS leads account takeover
04 Oct 2016 timeline
Pornhub disclosed a bug submitted by 5haked 
[RCE] Unserialize to XXE - file disclosure on ams.upload.pornhub.com
03 Oct 2016 timeline
Pornhub disclosed a bug submitted by clubjk 
XSS ReflectedGET /*embed_player*?
03 Oct 2016 timeline
Pornhub disclosed a bug submitted by clubjk 
XSS Reflected incategories*p
03 Oct 2016 timeline
HackerOne disclosed a bug submitted by rbcafe 
Obtain the username & the uid of the one doing the S3 sync on Hackerone
03 Oct 2016 timeline
Pornhub disclosed a bug submitted by jouko Twitter
SSRF & XSS (W3 Total Cache)
03 Oct 2016 timeline
Romit disclosed a bug submitted by gone 
[CRITICAL]-Taking over entire subdomain of romit.io
03 Oct 2016 timeline
Mail.Ru disclosed a bug submitted by bobrov 
[rabota.mail.ru] Open Redirect
03 Oct 2016 timeline
Mail.Ru disclosed a bug submitted by bobrov 
[my.mail.ru] CRLF Injection
03 Oct 2016 timeline
Mail.Ru disclosed a bug submitted by bobrov 
[s.mail.ru] CRLF Injection
03 Oct 2016 timeline
Mail.Ru disclosed a bug submitted by bobrov 
[upload-X.my.mail.ru] /uploadphoto Insecure Direct Object References
03 Oct 2016 timeline
Mail.Ru disclosed a bug submitted by bobrov 
[my.mail.ru] HTML injection ? ??????? ?? myadmin@corp.mail.ru
03 Oct 2016 timeline
Slack disclosed a bug submitted by sudotop 
Open Redirect on slack.com
02 Oct 2016 timeline
Algolia disclosed a bug submitted by michiel 
RCE on facebooksearch.algolia.com
01 Oct 2016 timeline
Twitter disclosed a bug submitted by ru_raz0r Twitter
reverb.twitter.com redirects to vulnerable reverb.guru
01 Oct 2016 timeline
1 ... 287 288 289 290 291 ... 417
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM