Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Unikrn' disclosed a bug submitted by b'albatraoz' 
b"CSRF logs the victim into attacker's account"
19 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'caioluders' 
b'[pdfinfojs] Command Injection on filename parameter'
19 Apr 2018 timeline
b'HackerOne' disclosed a bug submitted by b'd4rk_g1rl' 
b'Email Forwarding invitations for Drafts are not marked as accepted, allowing multiple users to join a program after disabling Email Forwarding'
18 Apr 2018 timeline
b'Shopify' disclosed a bug submitted by b'bastianwelfrid' 
b'Stored XSS in partners dashboard'
18 Apr 2018 timeline
b'MyCrypto' disclosed a bug submitted by b'w2w' 
b'Content Spoofing or Text Injection support.mycrypto.com'
18 Apr 2018 timeline
b'HackerOne' disclosed a bug submitted by b'japz' 
b'Harvesting all private invites using leave program fast-tracked invitation and security@ email forwarding feature'
18 Apr 2018 timeline
b'Khan Academy' disclosed a bug submitted by b'hamzar97' 
b'Rate Limitation Vulnerability (DDos)'
17 Apr 2018 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'joaomatosf' 
b'Remote Code Execution (RCE) in Multiple DoD Servers and Websites'
17 Apr 2018 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'joaomatosf' 
b'Remote Code Execution (RCE) in a DoD website'
17 Apr 2018 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'Time based SQL injection on dss.nga.mil'
17 Apr 2018 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'SSRF+XSS on simdis.nrl.navy.mil'
17 Apr 2018 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'confluence.devforce.disa.mil allowing NIPRNET access and various sensitive cloud information to be leaked'
17 Apr 2018 timeline
b'Cloudflare' disclosed a bug submitted by b'filedescriptor' 
b'Potential XSS vulnerability to HTML minification'
17 Apr 2018 timeline
b'SEMrush' disclosed a bug submitted by b'nikitastupin' 
b'[oauth token leak] at oauth.semrush.com'
17 Apr 2018 timeline
b'ICQ' disclosed a bug submitted by b'catferq' 
b'XSS ? ???? ??? ??????? ? ????????.'
16 Apr 2018 timeline
b'ICQ' disclosed a bug submitted by b'catferq' 
b'XSS ? ???????? ????????'
16 Apr 2018 timeline
b'Zomato' disclosed a bug submitted by b'foobar7' 
b'Clickjacking: Delete Account, Change privacy settings, Rate business, follow/unfollow (IE)'
15 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'holyvier' 
b'Prototype pollution attack (merge-objects)'
15 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'holyvier' 
b'Prototype pollution attack (merge-options)'
15 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'holyvier' 
b'Prototype pollution attack (merge-recursive)'
15 Apr 2018 timeline
1 ... 467 468 469 470 471 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM