Top10 publishers:
bobrov114 
geeknik70 
linkks69 
sp1d3rs61 
jobert50 
guido45 Twitter
bl4de41 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Imgur disclosed a bug submitted by aesteral 
SSRF / Local file enumeration / DoS due to improper handling of certain file formats by ffmpeg
14 Mar 2016 timeline
Ruby on Rails disclosed a bug submitted by benmmurphy 
Data-Tags and the New HTML Sanitizer Subverts CSRF protection
13 Mar 2016 timeline
Ruby on Rails disclosed a bug submitted by garnu 
Potential XSS on sanitize/Rails::Html::WhiteListSanitizer
13 Mar 2016 timeline
Ruby on Rails disclosed a bug submitted by arthurnn 
[Rails42] We can inject HTML tags when server is using strip_tags method
13 Mar 2016 timeline
Ruby on Rails disclosed a bug submitted by tenderlove 
DoS Attack in Controller Lookup Code
13 Mar 2016 timeline
Ruby on Rails disclosed a bug submitted by d_w 
http_basic_authenticate_with is suseptible to timing attacks.
13 Mar 2016 timeline
Shopify disclosed a bug submitted by hussein98d 
Strored Cross Site Scripting
13 Mar 2016 timeline
Zomato disclosed a bug submitted by mugeesahmed 
Weak Password Policy
13 Mar 2016 timeline
Imgur disclosed a bug submitted by aesteral 
SSRF in https://imgur.com/vidgif/url
12 Mar 2016 timeline
Shopify disclosed a bug submitted by wakadotz 
Injection via CSV Export feature in Admin Orders
12 Mar 2016 timeline
Badoo disclosed a bug submitted by bugdisclose 
Account Takeover
12 Mar 2016 timeline
ownCloud disclosed a bug submitted by architaa 
owncloud.com: Account Compromise Through CSRF
11 Mar 2016 timeline
ownCloud disclosed a bug submitted by nait_lamine 
apps.owncloud.com: CSRF change privacy settings
11 Mar 2016 timeline
Zomato disclosed a bug submitted by pr0tagon1st 
XSS via modified Zomato widget (res_search_widget.php)
11 Mar 2016 timeline
Mail.Ru disclosed a bug submitted by architaa 
Cross Site Scripting
10 Mar 2016 timeline
Mail.Ru disclosed a bug submitted by lukazorge 
Time-Based Blind SQL Injection Attacks
10 Mar 2016 timeline
ownCloud disclosed a bug submitted by psych0tr1a 
apps.owncloud.com: Multiple reflected XSS by insecure URL generation (IE only)
10 Mar 2016 timeline
ownCloud disclosed a bug submitted by nait_lamine 
CSRF in apps.owncloud.com
10 Mar 2016 timeline
ownCloud disclosed a bug submitted by prayas 
Lack of HSTS on https://apps.owncloud.com
10 Mar 2016 timeline
Zomato disclosed a bug submitted by arbaz_hussain 
Subdomain Takeover
09 Mar 2016 timeline
1 ... 304 305 306 307 308 ... 385
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM