Top10 publishers:
bobrov107 
linkks60 
sp1d3rs56 
jobert46 
guido41 Twitter
bl4de39 
bigbear_38 
isox36 
geeknik35 
4lemon35 

the unofficial HackerOne disclosure timeline.

X
Yahoo! disclosed a bug submitted by surgent10cross 
Comment Spoofing at http://suggestions.yahoo.com/detail/?prop=directory&fid=97721
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by surgent10cross 
CSRF Token missing on http://baseball.fantasysports.yahoo.com/b1/127146/messages
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by surgent10cross 
CSRF Token is missing on DELETE message option on http://baseball.fantasysports.yahoo.com/b1/127146/messages
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by internetwache Twitter
Open Proxy, http://www.smushit.com/ysmush.it/, 4/09/14, #SpringClean
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by quistertow Twitter
XSS in https://hk.user.auctions.yahoo.com
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by nahamsec Twitter
readble .htaccess + Source Code Disclosure (+ .SVN repository)
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by cmaruti 
Infrastructure and Application Admin Interfaces (OWASP?CM?007)
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by cmaruti 
TESTING FOR REFLECTED CROSS SITE SCRIPTING (OWASP?DV?001)
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by cmaruti 
Testing for user enumeration (OWASP?AT?002) - https://gh.bouncer.login.yahoo.com
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by pytesus 
Multiple vulnerabilities
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by bobrov 
Open Redirect via Request-URI
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by jeroldcamacho Twitter
Yahoo Sports Fantasy Golf (Join Public Group)
20 Aug 2014 timeline
jsDelivr disclosed a bug submitted by vineet 
Directory Traversal at http://staging.jsdelivr.net/
20 Aug 2014 timeline
Yahoo! disclosed a bug submitted by imadchabounia 
caesary.yahoo.net Blind Sql Injection
20 Aug 2014 timeline
WePay disclosed a bug submitted by anshuman_bh Twitter
CSRF on email address operations. Also performing unintended operations.
19 Aug 2014 timeline
concrete5 disclosed a bug submitted by melvin Twitter
Cross-Site Scripting in getMarketplacePurchaseFrame
18 Aug 2014 timeline
Factor.io disclosed a bug submitted by quistertow Twitter
Reflected XSS - factor.io
18 Aug 2014 timeline
InVision disclosed a bug submitted by pranav_hivarekar Twitter
Sensitive information in cookies
17 Aug 2014 timeline
wont-fix
DigitalSellz disclosed a bug submitted by bitquark Twitter
Verbose SQL error messages
17 Aug 2014 timeline
DigitalSellz disclosed a bug submitted by faisalahmed 
USER Account is not being deleted after user "Delete Account" from DASHBOARD
17 Aug 2014 timeline
1 ... 322 323 324 325 326 ... 350
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM