Top10 publishers:
bobrov114 
linkks73 
geeknik70 
sp1d3rs62 
jobert51 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Twitter disclosed a bug submitted by filedescriptor 
HTTP Response Splitting (CRLF injection) in report_story
21 Apr 2015 timeline
Python disclosed a bug submitted by hugbounter 
Tokenizer crash when processing undecodable source code
21 Apr 2015 timeline
Phabricator disclosed a bug submitted by candux 
XSS with Time-of-Day Format
19 Apr 2015 timeline
Shopify disclosed a bug submitted by shhnjk Twitter
comment out causes information disclosure
19 Apr 2015 timeline
Vimeo disclosed a bug submitted by michelgaschet 
Vimeo + & Vimeo PRO Unautorised Tax bypass
18 Apr 2015 timeline
Vimeo disclosed a bug submitted by avlidienbrunn Twitter
URGENT - Subdomain Takeover on status.vimeo.com due to unclaimed domain pointing to statuspage.io
18 Apr 2015 timeline
Shopify disclosed a bug submitted by sappi 
IDOR expire other user sessions
17 Apr 2015 timeline
Dropbox disclosed a bug submitted by haquaman 
XSS in version history of an HTML file in a shared folder
17 Apr 2015 timeline
wont-fix
HackerOne disclosed a bug submitted by rickypaipie 
Reflected File Download attack allows attacker to 'upload' executables to hackerone.com domain
16 Apr 2015 timeline
Shopify disclosed a bug submitted by shpendk 
Missing spf flags for myshopify.com
16 Apr 2015 timeline
PHP disclosed a bug submitted by ryat 
Type Confusion Vulnerability in SoapClient
16 Apr 2015 timeline
Adobe disclosed a bug submitted by reactors08 
files.acrobat.com stored XSS via send file
14 Apr 2015 timeline
PHP disclosed a bug submitted by libnex 
Buffer Over flow when parsing tar/zip/phar in phar_set_inode
14 Apr 2015 timeline
PHP disclosed a bug submitted by libnex 
Buffer Over-read in unserialize when parsing Phar
14 Apr 2015 timeline
PHP disclosed a bug submitted by mongo 
Use-after-free in php_curl related to CURLOPT_FILE/_INFILE/_WRITEHEADER
14 Apr 2015 timeline
PHP disclosed a bug submitted by mongo 
php_stream_url_wrap_http_ex() type-confusion vulnerability
14 Apr 2015 timeline
Whisper disclosed a bug submitted by adrianbelen 
Bypass pin(4 digit passcode on your android app)
12 Apr 2015 timeline
itBit Exchange disclosed a bug submitted by madmantm 
ITBit Vulnerable to SSLSTrip
12 Apr 2015 timeline
wont-fix
Twitter disclosed a bug submitted by xiaopw 
twitter android app Fragment Injection
11 Apr 2015 timeline
Airbnb disclosed a bug submitted by ruisilva 
SSL Issues
11 Apr 2015 timeline
1 ... 345 346 347 348 349 ... 391
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM