Top10 publishers:
bobrov114 
linkks75 
geeknik72 
sp1d3rs63 
jobert57 
netfuzzer47 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 

the unofficial HackerOne disclosure timeline.

X
LocalTapiola disclosed a bug submitted by reactors08 
www.lahitapiola.fi DOM XSS by choosing regional company
01 Jun 2016 timeline
Algolia disclosed a bug submitted by bugs3ra 
No rate-limit in Two factor Authentication leads to bypass using bruteforce attack
01 Jun 2016 timeline
Algolia disclosed a bug submitted by bugs3ra 
API Key added for one Indices works for all other indices too.
01 Jun 2016 timeline
Algolia disclosed a bug submitted by bugs3ra 
PHP version disclosed on blog.algolia.com
01 Jun 2016 timeline
Algolia disclosed a bug submitted by bugs3ra 
User with limited access to Index configuration can rename the Index
01 Jun 2016 timeline
BitHunt disclosed a bug submitted by bugs3ra 
No rate limit or captcha to identify humans
01 Jun 2016 timeline
Zomato disclosed a bug submitted by thisishrsh 
Bypass OTP verification when placing Order
01 Jun 2016 timeline
OpenSSL disclosed a bug submitted by dadrian 
Divide-and-conquer session key recovery in SSLv2 (CVE-2016-0703)
01 Jun 2016 timeline
OpenSSL disclosed a bug submitted by dadrian 
Bleichenbacher oracle in SSLv2 (CVE-2016-0704)
01 Jun 2016 timeline
Mapbox disclosed a bug submitted by bugs3ra 
Mapbox API Access Token with No Scope Can Read Styles
31 May 2016 timeline
Mapbox disclosed a bug submitted by apok 
Denial of service in account statistics endpoint
31 May 2016 timeline
Nginx disclosed a bug submitted by anish2good Twitter
Module ngx_http_auth_basic_module is broken and allowing all password after specific length
30 May 2016 timeline
Automattic disclosed a bug submitted by eboda Twitter
Akismet Several CSRF vulnerabilities
28 May 2016 timeline
Zomato disclosed a bug submitted by vivek_patil 
Authentication Bypassing and Sensitive Information Disclosure on Verify Email Address in Registration Flow
28 May 2016 timeline
HackerOne disclosed a bug submitted by apok 
Denial of service in report view.
27 May 2016 timeline
bitaccess disclosed a bug submitted by trabajoduro_2 
Missing SPF for hackerone.com
27 May 2016 timeline
Udemy disclosed a bug submitted by ankitsingh 
Stored XSS at Udemy
27 May 2016 timeline
Zomato disclosed a bug submitted by murat 
Persistent XSS on Reservation / Booking Page
27 May 2016 timeline
Zomato disclosed a bug submitted by murat 
Reflected XSS on Zomato API
27 May 2016 timeline
Phabricator disclosed a bug submitted by apok 
No authentication required to add an email address.
27 May 2016 timeline
1 ... 351 352 353 354 355 ... 447
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM