Top10 publishers:
bobrov107 
sp1d3rs54 
bigbear_38 
jobert38 
guido37 Twitter
bl4de37 
isox36 
geeknik35 
4lemon35 
edio34 

the unofficial HackerOne disclosure timeline.

X
DC Compendium disclosed a bug submitted by huzaifa_82 
Forward Secrecy is disable
01 Aug 2014 timeline
wont-fix
DC Compendium disclosed a bug submitted by shahmeer_amir 
Backend source code disclosure on 404 pages
01 Aug 2014 timeline
Secret disclosed a bug submitted by denull 
ClientId gives away platform (iOS/Android) from which a secret was posted.
01 Aug 2014 timeline
Yahoo! disclosed a bug submitted by redshark1802 Twitter
Cross-origin issue on rmaiauth.ads.vip.bf1.yahoo.com
31 Jul 2014 timeline
Yahoo! disclosed a bug submitted by redshark1802 Twitter
Header injection on rmaitrack.ads.vip.bf1.yahoo.com
31 Jul 2014 timeline
Mavenlink disclosed a bug submitted by mikkz 
Login CSRF
31 Jul 2014 timeline
Uzbey LLC disclosed a bug submitted by faisalahmed 
All Active user sessions should be destroyed when user change his password!
30 Jul 2014 timeline
DC Compendium disclosed a bug submitted by smiegles Twitter
Error page Cross-site scripting
30 Jul 2014 timeline
jsDelivr disclosed a bug submitted by shubham 
XSS
29 Jul 2014 timeline
jsDelivr disclosed a bug submitted by shahmeer_amir 
HSTS Policy not enabled on cdn.jsdelivr.net
29 Jul 2014 timeline
wont-fix
4chan disclosed a bug submitted by reactors08 
XSS in settings
28 Jul 2014 timeline
Slack disclosed a bug submitted by sehacure Twitter
CSRF vulnerability on https://sehacure.slack.com/account/settings
26 Jul 2014 timeline
Coinbase disclosed a bug submitted by anshuman_bh Twitter
CSRF on "Set as primary" option on the accounts page
26 Jul 2014 timeline
RelateIQ disclosed a bug submitted by pum 
SSRF (Portscan) via Register Function (Custom Server)
26 Jul 2014 timeline
HackerOne disclosed a bug submitted by sehacure Twitter
Category- Broken Authentication and Session Management (leads to account compromise if some conditions are met)
26 Jul 2014 timeline
RelateIQ disclosed a bug submitted by cliffordtrigo Twitter
TRACE disclosure attack may be possible
25 Jul 2014 timeline
WePay disclosed a bug submitted by cliffordtrigo Twitter
CSRF & Nonce Token Weak Implementation
25 Jul 2014 timeline
The Internet disclosed a bug submitted by donb 
LZ4 Core
25 Jul 2014 timeline
Mavenlink disclosed a bug submitted by panchocosil 
Flash XSS on swfupload.swf showing at app.mavenlink.com
24 Jul 2014 timeline
Uzbey LLC disclosed a bug submitted by karthic 
Language version disclosure in response header
23 Jul 2014 timeline
1 ... 301 302 303 304 305 ... 325
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM