Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Weblate' disclosed a bug submitted by b'crazy_wonk' 
b'2nd issue>>> flood of email no rate limit on delete account confirmation email >> '
28 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'crazy_wonk' 
b'flood of comment no rate limit on commnets >> by using different user agent '
28 Sep 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'asgerf' 
b'Prototype pollution attack (merge.recursive)'
28 Sep 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'asgerf' 
b'Prototype pollution attack (defaults-deep / constructor.prototype)'
28 Sep 2018 timeline
b'WordPress' disclosed a bug submitted by b'm7mdharoun' 
b'Reflected Swf XSS In ( plugins.svn.wordpress.org )'
27 Sep 2018 timeline
b'Redtube' disclosed a bug submitted by b'haythamnaamane' 
b'CSRF Full Account Takeover - https://redtube.com/settings'
27 Sep 2018 timeline
b'Rocket.Chat' disclosed a bug submitted by b'24nitin' 
b'XSS (stored) Wizard is saving executable code'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'CSRF in "send them an email and browser notification" feature'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'Bypass subdomain limits using race condition'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b"Stats Token doesn't expire after deactivating account"
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'CSRF in REPORT EMOTICON feature'
27 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'encrypt' 
b'Private and group tokens per minute endpoint active for disabled users'
27 Sep 2018 timeline
b'Nextcloud' disclosed a bug submitted by b'cyphar' 
b'twofactor_auth bypassable if provider fails to load'
27 Sep 2018 timeline
b'Vanilla' disclosed a bug submitted by b'mr_r0w07' 
b'Unsanitized input in email field'
27 Sep 2018 timeline
b'Rocket.Chat' disclosed a bug submitted by b'edoverflow' 
b'Blind XSS in the rocket.chat registration email'
26 Sep 2018 timeline
b'Chaturbate' disclosed a bug submitted by b'kazan71p' 
b'[chatws25.stream.highwebmedia.com] - Reflected XSS in c parameter'
26 Sep 2018 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'allenaleen' 
b'Browser Self XSS Protection not implemented'
26 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'c0narp' 
b'no notification send to victim if attacker hacks/accesses his victims WebLate account.'
26 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'hallaleen' 
b'Browser Self XSS Protection not implemented'
26 Sep 2018 timeline
b'Weblate' disclosed a bug submitted by b'crazy_wonk' 
b'Broken Authentication \xe2\x80\x93 Session Token bug'
26 Sep 2018 timeline
1 ... 439 440 441 442 443 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM