Top10 publishers:
bobrov107 
sp1d3rs54 
jobert45 
bl4de39 
bigbear_38 
guido38 Twitter
isox36 
4lemon35 
linkks35 
geeknik35 

the unofficial HackerOne disclosure timeline.

X
Slack disclosed a bug submitted by asdjsonyou 
Content Spoofing all Integrations in https://team.slack.com/services/new/
03 Sep 2014 timeline
HackerOne disclosed a bug submitted by siddiki Twitter
Notification of previous signed out user leakage.
01 Sep 2014 timeline
wont-fix
Twitter disclosed a bug submitted by mohdhaji87 
Password reset link not validated.
31 Aug 2014 timeline
wont-fix
Slack disclosed a bug submitted by sehacure Twitter
Broken Authentication (including Slack OAuth bugs)
30 Aug 2014 timeline
Slack disclosed a bug submitted by sehacure Twitter
URL redirection flaw
30 Aug 2014 timeline
Slack disclosed a bug submitted by sehacure Twitter
Stored XSS on this link https://sehacure.slack.com/help/requests/
30 Aug 2014 timeline
Uzbey LLC disclosed a bug submitted by atom Twitter
Missing HSTS (Strict Transport Security)
29 Aug 2014 timeline
Uzbey LLC disclosed a bug submitted by dmc 
Price Manipulation
29 Aug 2014 timeline
concrete5 disclosed a bug submitted by mkly 
XSS in Theme Preview Tools File
28 Aug 2014 timeline
concrete5 disclosed a bug submitted by squirmy 
XSS on [/concrete/concrete/elements/dashboard/sitemap.php]
28 Aug 2014 timeline
jsDelivr disclosed a bug submitted by vineet 
Using nmap revealing sensitive information
28 Aug 2014 timeline
HackerOne disclosed a bug submitted by djamel 
Email changing
28 Aug 2014 timeline
wont-fix
Automattic disclosed a bug submitted by mohaab007 
Missing HSTS header in https://public-api.wordpress.com
28 Aug 2014 timeline
wont-fix
DC Compendium disclosed a bug submitted by adrianbelen 
source code disclosure
27 Aug 2014 timeline
Envoy disclosed a bug submitted by sasi2103 Twitter
Delete visitor from IPAD with fullname which contains JS results XSS
27 Aug 2014 timeline
Coinbase disclosed a bug submitted by 0ctac0der Twitter
Simultaneous Session Logon : Improper Session Management
26 Aug 2014 timeline
wont-fix
RelateIQ disclosed a bug submitted by pum 
Failed Certificate Validation On Custom Server (Register)
25 Aug 2014 timeline
Coinbase disclosed a bug submitted by bbohn 
2FA settings allowed to be changed with no delay/freeze on funds
25 Aug 2014 timeline
wont-fix
Slack disclosed a bug submitted by asdjsonyou 
Open Redirect login account
25 Aug 2014 timeline
Slack disclosed a bug submitted by asdjsonyou 
Content spoofing at Stripe Integrations
25 Aug 2014 timeline
1 ... 310 311 312 313 314 ... 339
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM