Top10 publishers:
bobrov114 
linkks75 
geeknik72 
sp1d3rs63 
jobert57 
netfuzzer47 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 

the unofficial HackerOne disclosure timeline.

X
Shopify disclosed a bug submitted by brakhane 
S3 Buckets open to the world thanks to 'Authenticated Users' ACL
23 Feb 2016 timeline
HackerOne disclosed a bug submitted by zombiehelp54 Twitter
Null byte injection
23 Feb 2016 timeline
Udemy disclosed a bug submitted by geekboy Twitter
Misconfigured SPF Record Flag
22 Feb 2016 timeline
Udemy disclosed a bug submitted by manishbitr 
Stored XSS
22 Feb 2016 timeline
LeaseWeb disclosed a bug submitted by armaanpathan1 
MISSING SPF RECORDS & MISSING DKIM POLICY
22 Feb 2016 timeline
Coinbase disclosed a bug submitted by hackeroxo1 
Session Issue Maybe Can lead to huge loss [CRITICAL]
21 Feb 2016 timeline
Gratipay disclosed a bug submitted by n00b3rm4n 
proxy port 7000 and shell port 514 not filtered
20 Feb 2016 timeline
Gratipay disclosed a bug submitted by n00b3rm4n 
server calendar and server status available to public
20 Feb 2016 timeline
HackerOne disclosed a bug submitted by run 
Requesting unknown file type returns Ruby object w/ address
19 Feb 2016 timeline
HackerOne disclosed a bug submitted by aboukir 
User with Read-Only permissions can request/approve public disclosure
19 Feb 2016 timeline
Automattic disclosed a bug submitted by valievkarim 
XSS at www.woothemes.com
19 Feb 2016 timeline
Slack disclosed a bug submitted by kamil_hism 
Executing scripts on slack-files.com using SVG
18 Feb 2016 timeline
Automattic disclosed a bug submitted by valievkarim 
XSS at wordpress.com
18 Feb 2016 timeline
Gratipay disclosed a bug submitted by guyfromindia 
No Valid SPF Records.
18 Feb 2016 timeline
Gratipay disclosed a bug submitted by arbaz_hussain 
SPF/DKIM/DMARC for grtp.co
18 Feb 2016 timeline
ok.ru disclosed a bug submitted by alpha 
SSRF/XSPA ? ????? ???????? ????? ?? URL
17 Feb 2016 timeline
ok.ru disclosed a bug submitted by dipak_das 
Cross site scripting On api Calculator API requests
17 Feb 2016 timeline
Shopify disclosed a bug submitted by zombiehelp54 Twitter
Stored XSS in /admin/orders
17 Feb 2016 timeline
Mail.Ru disclosed a bug submitted by isenturk 
reflected in xss
17 Feb 2016 timeline
Gratipay disclosed a bug submitted by a0xnirudh Twitter
HTTP trace method is enabled
17 Feb 2016 timeline
1 ... 376 377 378 379 380 ... 454
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM