Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'RATELIMITED' disclosed a bug submitted by b'hamad_iheb' 
b'Editable Wiki repo by anyone '
20 Dec 2018 timeline
b'Uber' disclosed a bug submitted by b'vijay_kumar1110' 
b'IDOR on partners.uber.com allows for a driver to override administrator documents'
19 Dec 2018 timeline
b'Uber' disclosed a bug submitted by b'reptou' 
b'XSS in ubermovement.com via editable Google Sheets'
19 Dec 2018 timeline
b'Uber' disclosed a bug submitted by b'hussain_0x3c' 
b'Reflected XSS in lert.uber.com'
19 Dec 2018 timeline
b'Uber' disclosed a bug submitted by b'hanuman1' 
b'SMS URL verification link does not expire on phone number change and lacks rate limiting'
19 Dec 2018 timeline
b'Uber' disclosed a bug submitted by b'vijay_kumar1110' 
b'Site-wide CSRF on eats.uber.com'
19 Dec 2018 timeline
b'Uber' disclosed a bug submitted by b'filedescryptor' 
b'lert.uber.com: Few default folders/files of AURA Framework are accessible'
19 Dec 2018 timeline
b'Keybase' disclosed a bug submitted by b'mirchr' 
b'Linux privilege escalation via trusted $PATH in keybase-redirector '
18 Dec 2018 timeline
b'Keybase' disclosed a bug submitted by b'xpn' 
b'Privilege Escalation via Keybase Helper'
18 Dec 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'ezkbd' 
b'Ubuntu 12.04 Privilege Escalation'
18 Dec 2018 timeline
b'OLX' disclosed a bug submitted by b'lukeberner' 
b"Able to list user's public name, username, phone number, address, facebook ID..."
17 Dec 2018 timeline
b'MyCrypto' disclosed a bug submitted by b'shantuman' 
b'SPF Records (SMTP protection not used)'
17 Dec 2018 timeline
b'Brave Software' disclosed a bug submitted by b'mushicious' 
b'Field Day With Protocol Handlers'
17 Dec 2018 timeline
b'YouPorn' disclosed a bug submitted by b'prakharprasad' 
b'Add a video to favourite list of any user [via YouPorn API / FrontEnd]'
17 Dec 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'dienpv' 
b'Prototype pollution attack (lutils-merge)'
17 Dec 2018 timeline
b'OLX' disclosed a bug submitted by b'pajoda' 
b'Search Page Reflected XSS on sharjah.dubizzle.com through unencoded output of GET parameter in JavaScript'
16 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'whoami021' 
b'Apache Version Disclosure Through Directory Indexing'
15 Dec 2018 timeline
b'RATELIMITED' disclosed a bug submitted by b'dhamu_harker' 
b'Information Disclosure on https://theendlessweb.com/'
15 Dec 2018 timeline
b'Twitter' disclosed a bug submitted by b'edent' 
b'Incorrect details on OAuth permissions screen allows DMs to be read without permission'
14 Dec 2018 timeline
b'Imgur' disclosed a bug submitted by b'sbakhour' 
b'Ability to login to the Nexus Repo Manager from https://nexus.imgur.com/ '
13 Dec 2018 timeline
1 ... 423 424 425 426 427 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM