Top10 publishers:
bobrov107 
sp1d3rs54 
jobert41 
bigbear_38 
bl4de37 
guido37 Twitter
isox36 
4lemon35 
geeknik35 
edio34 

the unofficial HackerOne disclosure timeline.

X
Slack disclosed a bug submitted by 4lemon 
SSRF on https://whitehataudit.slack.com/account/photo
21 Dec 2014 timeline
Square disclosed a bug submitted by 4lemon 
Reflected XSS in widget script thru cookie
21 Dec 2014 timeline
QIWI disclosed a bug submitted by mohdhaji87 
Code for registration of qiwi account is not coming even after a long interval of time for Indian mobile number
21 Dec 2014 timeline
wont-fix
Openfolio disclosed a bug submitted by dreamzz 
Options Method Enabled
21 Dec 2014 timeline
wont-fix
QIWI disclosed a bug submitted by wesecureapp 
[qiwi.com] /oauth/confirm.action XSS
20 Dec 2014 timeline
Square disclosed a bug submitted by adrianbelen 
square google calendar integration CSRF,https://squareup.com/appointments/business/settings(state parameter not checking properly)
18 Dec 2014 timeline
QIWI disclosed a bug submitted by bitquark Twitter
[send.qiwi.ru] Soap-based XXE vulnerability /soapserver/
18 Dec 2014 timeline
Twitter disclosed a bug submitted by avicoder Twitter
Open redirection in fabric.io
18 Dec 2014 timeline
QIWI disclosed a bug submitted by psych0tr1a 
[send.qiwi.ru] XSS at auth?login=
17 Dec 2014 timeline
Phabricator disclosed a bug submitted by ravip 
Content injection
15 Dec 2014 timeline
wont-fix
Python disclosed a bug submitted by guido Twitter
PyUnicode_FromFormatV crasher
15 Dec 2014 timeline
Twitter disclosed a bug submitted by geekboy Twitter
BROKEN AUTHENTICATION IN MOBILE VERIFICATION
14 Dec 2014 timeline
wont-fix
Mail.Ru disclosed a bug submitted by kamil_hism 
localStorage ?? ???????? ????? ??????
10 Dec 2014 timeline
Mail.Ru disclosed a bug submitted by psych0tr1a 
Time based sql injection
10 Dec 2014 timeline
Mail.Ru disclosed a bug submitted by mohank 
Content Spoofing vulnerability in Mail.ru mobile
10 Dec 2014 timeline
wont-fix
Mail.Ru disclosed a bug submitted by 4lemon 
XSS in https://e.mail.ru/cgi-bin/lstatic (Limited use)
10 Dec 2014 timeline
Mail.Ru disclosed a bug submitted by 4lemon 
Stored XSS on http://cards.mail.ru
10 Dec 2014 timeline
Mail.Ru disclosed a bug submitted by 4lemon 
XXE and SSRF on webmaster.mail.ru
10 Dec 2014 timeline
Mail.Ru disclosed a bug submitted by 4lemon 
Reflected XSS connect.mail.ru (IE6-IE8)
10 Dec 2014 timeline
Mail.Ru disclosed a bug submitted by reactors08 
XSS via .eml file
10 Dec 2014 timeline
1 ... 291 292 293 294 295 ... 327
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM