Top10 publishers:
bobrov114 
linkks75 
geeknik72 
sp1d3rs63 
jobert57 
netfuzzer47 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 

the unofficial HackerOne disclosure timeline.

X
Imgur disclosed a bug submitted by fransrosen 
Reflected Flash XSS using swfupload.swf with an epileptic reloading to bypass the button-event
28 Jul 2016 timeline
Moneybird disclosed a bug submitted by a5tronaut 
Open Redirect vulnerability in moneybird.com
28 Jul 2016 timeline
GitLab disclosed a bug submitted by jobert 
Persistent XSS on public wiki pages
27 Jul 2016 timeline
Nextcloud disclosed a bug submitted by shoveller 
help.nextcloud.com: Known DoS condition (null pointer deref) in Nginx running
27 Jul 2016 timeline
GitLab disclosed a bug submitted by jobert 
Privilege escalation to access all private groups and repositories
27 Jul 2016 timeline
Uber disclosed a bug submitted by jouko Twitter
Stored XSS on newsroom.uber.com admin panel / Stream WordPress plugin
27 Jul 2016 timeline
Shopify disclosed a bug submitted by zombiehelp54 Twitter
[CSRF] Install premium themes
27 Jul 2016 timeline
Pornhub disclosed a bug submitted by static 
[phpobject in cookie] Remote shell/command execution
27 Jul 2016 timeline
Pornhub disclosed a bug submitted by jahrek 
Weak user aunthentication on mobile application - I just broken userKey secret password
27 Jul 2016 timeline
Pornhub disclosed a bug submitted by dremos 
(Pornhub & Youporn & Brazzers ANDROID APP) : Upload Malicious APK / Overrite Existing APK / Android BackOffice Access
27 Jul 2016 timeline
Bime disclosed a bug submitted by jobert 
Urgent: attacker can access every data source on Bime
27 Jul 2016 timeline
Bime disclosed a bug submitted by jobert 
Attacker can access graphic representation of every query
27 Jul 2016 timeline
ok.ru disclosed a bug submitted by hardc0re 
Multiple critical vulnerabilities in Odnoklassniki Android application
26 Jul 2016 timeline
FantasyTote disclosed a bug submitted by karel_origin 
Betting more than max amount
26 Jul 2016 timeline
QIWI disclosed a bug submitted by artsploit 
XML External Entity (XXE) in qiwi.com + waf bypass
26 Jul 2016 timeline
Uber disclosed a bug submitted by thezawad Twitter
XSS in people.uber.com
26 Jul 2016 timeline
Uber disclosed a bug submitted by blinkms 
Bruteforce INVITE codes easy way
26 Jul 2016 timeline
Uber disclosed a bug submitted by mefkan 
Brute-Forcing invite codes in partners.uber.com
26 Jul 2016 timeline
Uber disclosed a bug submitted by kusl 
reopen #128853 (Information disclosure at lite.uber.com)
26 Jul 2016 timeline
Uber disclosed a bug submitted by apara 
Missing authentication on Notification setting .
26 Jul 2016 timeline
1 ... 334 335 336 337 338 ... 447
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM