Top10 publishers:
bobrov107 
sp1d3rs54 
jobert45 
bl4de39 
bigbear_38 
guido38 Twitter
isox36 
4lemon35 
linkks35 
geeknik35 

the unofficial HackerOne disclosure timeline.

X
HackerOne disclosed a bug submitted by danlec 
CSP Bypass: Click handler for links with data-method="post" can cause authenticity_token to be sent off domain
26 Feb 2015 timeline
Todoist disclosed a bug submitted by cliffordtrigo Twitter
Taking over a Business Account Admin
26 Feb 2015 timeline
Todoist disclosed a bug submitted by cliffordtrigo Twitter
Remotely removing credit cards from business accounts!
26 Feb 2015 timeline
Twitter disclosed a bug submitted by config 
User's DM won't deleted after logout from Twitter for iOS (com.atebits.xxx.application-state)
25 Feb 2015 timeline
Twitter disclosed a bug submitted by homakov 
Redirect URL in /intent/ functionality is not properly escaped
24 Feb 2015 timeline
Square disclosed a bug submitted by mikkz 
XSS on bookfresh
23 Feb 2015 timeline
Square disclosed a bug submitted by avicoder Twitter
HTTP Header revealing server information.
23 Feb 2015 timeline
wont-fix
Vimeo disclosed a bug submitted by batram 
XSS on any site that includes the moogaloop flash player | deprecated embed code
22 Feb 2015 timeline
Twitter disclosed a bug submitted by simon90 
URGENT - SUBDOMAIN TAKEOVER ON TWITTER ACQ.
21 Feb 2015 timeline
OkCupid disclosed a bug submitted by bitquark Twitter
Rosetta flash vulnerability in clientstats AJAX script
20 Feb 2015 timeline
Twitter disclosed a bug submitted by avicoder Twitter
Path disclosure in platform0.twitter.com
20 Feb 2015 timeline
wont-fix
HackerOne disclosed a bug submitted by anshuman_bh Twitter
Insecure Direct Object Reference vulnerability
20 Feb 2015 timeline
Square disclosed a bug submitted by niyaax 
Redirect while opening link in new tabs
19 Feb 2015 timeline
Twitter disclosed a bug submitted by wesecureapp 
HTML/XSS rendered in Android App of Crashlytics through fabric.io
18 Feb 2015 timeline
Twitter disclosed a bug submitted by wesecureapp 
Flaw in login with twitter to steal Oauth tokens
18 Feb 2015 timeline
Localize disclosed a bug submitted by testalways 
PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.
17 Feb 2015 timeline
Localize disclosed a bug submitted by pulkit_pandey 
files likes of README.md is public
17 Feb 2015 timeline
Vimeo disclosed a bug submitted by harshafriend4all Twitter
profile photo update bypass
17 Feb 2015 timeline
itBit Exchange disclosed a bug submitted by harshafriend4all Twitter
weird bug ! ( missing validation on new email verfication )
14 Feb 2015 timeline
Vimeo disclosed a bug submitted by harshafriend4all Twitter
Buying ondemand videos that 0.1 and sometimes for free
13 Feb 2015 timeline
1 ... 299 300 301 302 303 ... 339
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM