Top10 publishers:
bobrov107 
linkks60 
sp1d3rs54 
jobert45 
bl4de39 
bigbear_38 
guido38 Twitter
isox36 
geeknik35 
4lemon35 

the unofficial HackerOne disclosure timeline.

X
Slack disclosed a bug submitted by prakharprasad Twitter
Duplicate of #4550
21 May 2014 timeline
Automattic disclosed a bug submitted by smilez_hapiez 
Session Cookie without Secure flag set
21 May 2014 timeline
wont-fix
Automattic disclosed a bug submitted by smilez_hapiez 
Session Cookie without Secure flag set
21 May 2014 timeline
wont-fix
respondly disclosed a bug submitted by karthic 
X-Content-Type-Options header missing
21 May 2014 timeline
Localize disclosed a bug submitted by ajaysinghnegi 
Projects Watch or Notifications Settings Change Via CSRF
21 May 2014 timeline
CloudFlare disclosed a bug submitted by shahmeer_amir 
Apache Multiviews are enabled
21 May 2014 timeline
wont-fix
Faceless disclosed a bug submitted by trotmaster 
Account hijacking possible through ADB backup feature
21 May 2014 timeline
IRCCloud disclosed a bug submitted by nikbugbounty 
Login CSRF can be bypassed (Similar approach to previous one).
20 May 2014 timeline
HackerOne disclosed a bug submitted by niks Twitter
harvesting attack on user registration
19 May 2014 timeline
wont-fix
RelateIQ disclosed a bug submitted by niks Twitter
open redirect
19 May 2014 timeline
wont-fix
Slack disclosed a bug submitted by niks Twitter
Reflected Xss
19 May 2014 timeline
C2FO disclosed a bug submitted by internetwache Twitter
User guessing/enumeration at https://app.c2fo.com/api/password-reset
19 May 2014 timeline
Localize disclosed a bug submitted by vhssunny1 
Server header - information disclosure
19 May 2014 timeline
Localize disclosed a bug submitted by karthic 
X-Content-Type-Options header missing
19 May 2014 timeline
joola.io disclosed a bug submitted by shahmeer_amir 
Login password guessing attack
19 May 2014 timeline
Localize disclosed a bug submitted by guido Twitter
Change user settings through CSRF
18 May 2014 timeline
Localize disclosed a bug submitted by abhijeth 
Password Policy
18 May 2014 timeline
Localize disclosed a bug submitted by vhssunny1 
Business logic Failure - Browser cache management and logout vulnerability.
18 May 2014 timeline
Localize disclosed a bug submitted by melvin Twitter
Apache2 /icons/ folder accessible
18 May 2014 timeline
respondly disclosed a bug submitted by vandana91 
x-frame options-sameorigin warning
18 May 2014 timeline
1 ... 330 331 332 333 334 ... 345
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM