Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Chaturbate' disclosed a bug submitted by b'ninjan' 
b'Blind SSRF on image proxy camo.stream.highwebmedia.com'
20 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'inhibitor181' 
b'Open redirect in securegatewayaccess.com / secure.chaturbate.com via prejoin_data parameter'
19 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'nahamsec' 
b"CSS Injection on /embed/ via bgcolor parameter leaks user's CSRF token and allows for XSS "
19 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'nahamsec' 
b'Stored XSS against all Chaturbate users using an application name'
19 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'nahamsec' 
b'Reflected XSS on ssl-ccstatic.highwebmedia.com via player.swf'
19 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'corb3nik' 
b'[chaturbate.com] - CSRF Vulnerability on image upload'
19 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'jolteon' 
b'Account Takeover via billing'
19 Sep 2018 timeline
b'Shopify' disclosed a bug submitted by b'rijalrojan' 
b'Unauthenticated access to Zendesk tickets through athena-flex-production.shopifycloud.com Okta bypass'
19 Sep 2018 timeline
b'BOHEMIA INTERACTIVE a.s.' disclosed a bug submitted by b'europa' 
b'(Possible) staff account takeover via reset token bruteforce at helpdesk.bistudio.com'
19 Sep 2018 timeline
b'Rocket.Chat' disclosed a bug submitted by b'mattaustin' 
b'Remote Code Execution in Rocket.Chat Desktop'
18 Sep 2018 timeline
b'Brave Software' disclosed a bug submitted by b'masatokinugawa' 
b'Sending arbitrary IPC messages via overriding Function.prototype.apply'
18 Sep 2018 timeline
b'Brave Software' disclosed a bug submitted by b'masatokinugawa' 
b'Sending arbitrary IPC messages via overriding Array.prototype.push'
18 Sep 2018 timeline
b'Brave Software' disclosed a bug submitted by b'masatokinugawa' 
b'Brave Browser unexpectedly allows to send arbitrary IPC messages'
18 Sep 2018 timeline
b'Shopify' disclosed a bug submitted by b'rms' 
b'From full-access account to Account Owner'
18 Sep 2018 timeline
b'BOHEMIA INTERACTIVE a.s.' disclosed a bug submitted by b'hack2684' 
b'Weak Password Policy on Signup at https://accounts.bistudio.com/auth'
18 Sep 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'lirantal' 
b'http-live-simulator npm module is prone to path traversal attacks'
18 Sep 2018 timeline
b'Dropbox' disclosed a bug submitted by b'phwd' 
b'Dropbox employee benefits documents are available in a test Dropbox folder'
17 Sep 2018 timeline
b'New Relic' disclosed a bug submitted by b'hackerone77-222' 
b'DNS misconfiguration on email.alerts.newrelic.com'
17 Sep 2018 timeline
b'BOHEMIA INTERACTIVE a.s.' disclosed a bug submitted by b'meals' 
b'IDOR to view User Order Information'
17 Sep 2018 timeline
b'BOHEMIA INTERACTIVE a.s.' disclosed a bug submitted by b'meals' 
b'217.147.95.145 NFS Exposed with Zeus Server configs'
17 Sep 2018 timeline
1 ... 429 430 431 432 433 ... 729
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM