Top10 publishers:
bobrov114 
linkks75 
geeknik72 
sp1d3rs63 
jobert57 
netfuzzer47 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 

the unofficial HackerOne disclosure timeline.

X
Slack disclosed a bug submitted by uranium238 Twitter
Snooping into messages via email service
14 Sep 2016 timeline
Uber disclosed a bug submitted by uranium238 Twitter
Reading Emails in Uber Subdomains
14 Sep 2016 timeline
Zomato disclosed a bug submitted by mr__robot 
CSRF AT INVITING PEOPLE THOUGH PHONE NUMBER
14 Sep 2016 timeline
GoCD disclosed a bug submitted by mr__robot 
Directory Listening
14 Sep 2016 timeline
Vimeo disclosed a bug submitted by opnsec 
XSS in Subtitles of Vimeo Flash Player and Hubnut
14 Sep 2016 timeline
Boozt Fashion AB disclosed a bug submitted by hacking79 
XSS
14 Sep 2016 timeline
OLX disclosed a bug submitted by surajsp 
these are my old reports and still i have not receive any good replys, these all are Cross Site Scripting(XSS) issues: POC1: https://www.youtube.com/w
14 Sep 2016 timeline
Coursera disclosed a bug submitted by secalert 
XSS in https://www.coursera.org/courses/
14 Sep 2016 timeline
Boozt Fashion AB disclosed a bug submitted by zephrfish Twitter
Instance of Apache Vulnerable to Several Issues
14 Sep 2016 timeline
Bime disclosed a bug submitted by agarri_fr 
SSRF in the Connector Designer (REST and Elastic Search)
14 Sep 2016 timeline
Bime disclosed a bug submitted by agarri_fr 
The JDBC driver used by the Vertica connector allows to create files on the backends
14 Sep 2016 timeline
Bime disclosed a bug submitted by agarri_fr 
XXE in the Connector Designer
14 Sep 2016 timeline
Nextcloud disclosed a bug submitted by spetr0x 
Unauthenticated Stored xss
13 Sep 2016 timeline
Instacart disclosed a bug submitted by sameoldstory 
Fetch private list metadata and any user's personal name
12 Sep 2016 timeline
Instacart disclosed a bug submitted by corb3nik 
Hyperlink Injection in Friend Invitation Emails
12 Sep 2016 timeline
Instacart disclosed a bug submitted by cablej Twitter
Missing rel=noreferrer tag allows link in list to change url of currently open tab
12 Sep 2016 timeline
Instacart disclosed a bug submitted by mefkan 
Image Upload Path Disclosure
12 Sep 2016 timeline
Legal Robot disclosed a bug submitted by cablej Twitter
User Information sent to client through websockets
12 Sep 2016 timeline
Legal Robot disclosed a bug submitted by cablej Twitter
User Information leak allows user to bypass email verification.
12 Sep 2016 timeline
Pornhub disclosed a bug submitted by zephrfish Twitter
[crossdomain.xml] Dangerous Flash Cross-Domain Policy
12 Sep 2016 timeline
1 ... 322 323 324 325 326 ... 447
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM