Top10 publishers:
bobrov114 
linkks75 
geeknik72 
sp1d3rs62 
jobert57 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
haxta4ok0037 

the unofficial HackerOne disclosure timeline.

X
Harvest disclosed a bug submitted by eboda Twitter
S3 bucket takeover due to proxy.harvestfiles.com
10 Sep 2016 timeline
Boozt Fashion AB disclosed a bug submitted by r4hul-ch 
No csrf protection on logout
10 Sep 2016 timeline
Boozt Fashion AB disclosed a bug submitted by m726a786 
User Enumeration.
10 Sep 2016 timeline
Harvest disclosed a bug submitted by 0xamir 
Users enumeration is possible through cycling through recurring[client_id] argument value.
10 Sep 2016 timeline
Mail.Ru disclosed a bug submitted by ahsantahir 
[cfire.mail.ru] CSRF Bypassed - Changing anyone's 'User Info'
09 Sep 2016 timeline
Veris disclosed a bug submitted by xenon 
[XSS] sandbox.veris.in
09 Sep 2016 timeline
Legal Robot disclosed a bug submitted by paramdham 
CSRF
09 Sep 2016 timeline
Instacart disclosed a bug submitted by s44mux 
Stored XSS
09 Sep 2016 timeline
Uber disclosed a bug submitted by apara 
Bulk UUID enumeration via invite codes
08 Sep 2016 timeline
Mapbox disclosed a bug submitted by n0rb3r7 
target="_blank" Vulnerability Resulting in Critical Phishing Vector
07 Sep 2016 timeline
Algolia disclosed a bug submitted by rishi62 
Stored xss
07 Sep 2016 timeline
Algolia disclosed a bug submitted by ctee 
Stored XSS from Display Settings triggered on Save and viewing realtime search demo
07 Sep 2016 timeline
Algolia disclosed a bug submitted by ctee 
Stored XSS triggered by json key during UI generation
07 Sep 2016 timeline
Algolia disclosed a bug submitted by rajauzairabdullah 
No Rate Limit In Inviting Similar Contact Multiple Times
07 Sep 2016 timeline
New Relic disclosed a bug submitted by hassham 
Basic Authorization over HTTP
07 Sep 2016 timeline
HackerOne disclosed a bug submitted by abdullah 
Users contents on AWS is cacheable
06 Sep 2016 timeline
Legal Robot disclosed a bug submitted by paramdham 
clickjacking
06 Sep 2016 timeline
Legal Robot disclosed a bug submitted by paramdham 
Registration bypass using OAuth logical bug
06 Sep 2016 timeline
Shopify disclosed a bug submitted by sacurifity 
Subdomain Takeover in http://genghis-cdn.shopify.io/ pointing to Fastly
06 Sep 2016 timeline
Legal Robot disclosed a bug submitted by surajmulik 
content spoofing
06 Sep 2016 timeline
1 ... 310 311 312 313 314 ... 434
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM