Top10 publishers:
bobrov114 
linkks74 
geeknik71 
sp1d3rs62 
jobert54 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Shopify disclosed a bug submitted by rms 
Apps can access 'channels' beta api
18 Nov 2015 timeline
Shopify disclosed a bug submitted by zombiehelp54 Twitter
deleted staff member can add his amazon marketplace web services account to the store.
18 Nov 2015 timeline
DigitalSellz disclosed a bug submitted by s_p_q_r 
Own downloading link isn't properly checked in the email template
16 Nov 2015 timeline
Mail.Ru disclosed a bug submitted by aesteral 
XSS: https://light.mail.ru/compose, https://m.mail.ru/compose/[id]/reply ??? ?????? ?? ??????????? ??????? ?????????????? ??????
16 Nov 2015 timeline
Binary.com disclosed a bug submitted by gjavado 
Http Response Splitting - Validate link
15 Nov 2015 timeline
Twitter disclosed a bug submitted by sandeep100928 
Problem with OAuth
14 Nov 2015 timeline
HackerOne disclosed a bug submitted by killr0x33d Twitter
Send AJAX request to external domain
14 Nov 2015 timeline
HackerOne disclosed a bug submitted by ragnar 
Cross-domain AJAX request
14 Nov 2015 timeline
Binary.com disclosed a bug submitted by zombiehelp54 Twitter
login to any user's cashier account and full account information disclosure
14 Nov 2015 timeline
PHP disclosed a bug submitted by ryat 
zend_throw_or_error() format string vulnerability
14 Nov 2015 timeline
Python disclosed a bug submitted by androm3da 
tokenizer crash when processing undecodable source code
14 Nov 2015 timeline
Udemy disclosed a bug submitted by adrianbelen 
leak receipt of another user
13 Nov 2015 timeline
Zendesk disclosed a bug submitted by zombiehelp54 Twitter
Stored XSS in comments
13 Nov 2015 timeline
Mail.Ru disclosed a bug submitted by bigbear_ 
[ling.go.mail.ru] Server-Status opened for all users
13 Nov 2015 timeline
Binary.com disclosed a bug submitted by paulos_ Twitter
Cross Site Scripting
13 Nov 2015 timeline
ownCloud disclosed a bug submitted by mohammedalsaggaf 
owncloud.com: Content Sniffing not disabled
12 Nov 2015 timeline
Shopify disclosed a bug submitted by elamaran619 
Privilege escalation and circumvention of permission to limited access user
11 Nov 2015 timeline
Slack disclosed a bug submitted by hassham 
File upload XSS (Java applet) on http://slackatwork.com/
11 Nov 2015 timeline
Slack disclosed a bug submitted by harry_mg 
Self-XSS in posts by formatting text as code
10 Nov 2015 timeline
Shopify disclosed a bug submitted by shahmeer-amir 
Accessing Payments page and adding payment methods with limited access accounts
10 Nov 2015 timeline
1 ... 348 349 350 351 352 ... 417
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM