Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Vanilla' disclosed a bug submitted by b'jameelnabbo' 
b'XSS: Group search terms'
01 May 2019 timeline
b'Shipt' disclosed a bug submitted by b'codeslayer137' 
b'Price manipulation via fraction values (Parameter Tampering)'
01 May 2019 timeline
b'Zomato' disclosed a bug submitted by b'yashrs' 
b'Open AWS S3 bucket leaks all Images uploaded to Zomato chat'
01 May 2019 timeline
b'Chaturbate' disclosed a bug submitted by b'teuvokas' 
b'DoS attacks utilizing camo.stream.highwebmedia.com'
01 May 2019 timeline
b'Zomato' disclosed a bug submitted by b'khoiasd' 
b'[www.zomato.com] Blind XSS in one of the admin dashboard'
01 May 2019 timeline
b'Grammarly' disclosed a bug submitted by b'sarmadkhan' 
b'Reflected Cross Site Scripting (XSS)'
30 Apr 2019 timeline
b'Grammarly' disclosed a bug submitted by b'metnew' 
b'Emails from Grammarly missing sanitization(lack of validation?) -> HTML injection in emails'
30 Apr 2019 timeline
b'Grammarly' disclosed a bug submitted by b'metnew' 
b'"More on Wikipedia" link disclose "Referrer" and leak `window.opener` reference for arbitrary websites'
30 Apr 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ronperris' 
b'[finalhandler] Insecure Default Configuration'
29 Apr 2019 timeline
b'Twitter' disclosed a bug submitted by b'rahulkankrale' 
b'Twitter lite(Android): Vulnerable to local file steal, Javascript injection, Open redirect '
29 Apr 2019 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'ajxchapman' 
b'UniFi Video Server web interface Configuration Restore CSRF leading to full application compromise'
28 Apr 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'lxndr' 
b'A specifically malformed MQTT Subscribe packet crashes MQTT Brokers using the mqtt-packet module for decoding '
28 Apr 2019 timeline
b'Udemy' disclosed a bug submitted by b'toannc123' 
b'[affiliates.udemy.com] Wordpress user admin information discloure'
28 Apr 2019 timeline
b'Slack' disclosed a bug submitted by b'zemnmez' 
b'XSS in gist integration'
28 Apr 2019 timeline
b'VK.com' disclosed a bug submitted by b'page1337' 
b'???????? ?????? ? ???????? ??????????, ??????? ????????? ? ????????? ???????'
26 Apr 2019 timeline
b'Udemy' disclosed a bug submitted by b'salmon' 
b'S3 bucket unnecessarily discloses permissions'
26 Apr 2019 timeline
b'Discourse' disclosed a bug submitted by b'karimpwnz' 
b"Employee's GitHub Token Found In Travis CI Build Logs"
25 Apr 2019 timeline
b'Khan Academy' disclosed a bug submitted by b'tom2468101214' 
b'Users can make accounts with a fake email address.'
25 Apr 2019 timeline
b'Twitter' disclosed a bug submitted by b'filedescriptor' 
b'[Urgent] Invalidating OAuth2 Bearer token makes TweetDeck unavailable'
25 Apr 2019 timeline
b'HackerOne' disclosed a bug submitted by b'jobert' 
b"Moving a report to a different program doesn't reassign the Custom Field Values"
25 Apr 2019 timeline
1 ... 405 406 407 408 409 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM