Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Coinbase' disclosed a bug submitted by b'paulos_' 
b'User provided values passed to PHP unset() function'
09 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'bl4de' 
b'[bracket-template] Reflected XSS possible when variable passed via GET parameter is used in template'
09 Apr 2018 timeline
b'Showmax' disclosed a bug submitted by b'mostafamamdoh' 
b'Stored blind xss on showmax support team'
09 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'chalker' 
b'`atob` allocates uninitialized Buffers when number is passed in input on Node.js 4.x and below'
08 Apr 2018 timeline
b'Zomato' disclosed a bug submitted by b'akamble937' 
b'Zomato.com Reflected Cross Site Scripting'
08 Apr 2018 timeline
b'Keybase' disclosed a bug submitted by b'mishre' 
b'Fix bypass of different processing of usernames on Hackernews'
08 Apr 2018 timeline
b'Shopify' disclosed a bug submitted by b'gromoza' 
b'XSS *.myshopify.com/collections/vendors?q='
08 Apr 2018 timeline
b'Zomato' disclosed a bug submitted by b'strukt' 
b'Reflected XSS on https://www.zomato.com'
07 Apr 2018 timeline
b'VK.com' disclosed a bug submitted by b'povargek' 
b'???????? ????? ?????? ???????? ? ???????? ?? ???? SMS, ????? ??? ????????????????? ???????'
06 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'chalker' 
b'`http-proxy-agent` passes unsanitized options to Buffer(arg), resulting in DoS and uninitialized memory leak'
05 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'chalker' 
b'`sshpk` is vulnerable to ReDoS when parsing crafted invalid public keys'
04 Apr 2018 timeline
b'Coinbase' disclosed a bug submitted by b'dawgyg' 
b'Double Payout via PayPal'
04 Apr 2018 timeline
b'Coinbase' disclosed a bug submitted by b'ambisafe' 
b'ETH contract handling errors'
04 Apr 2018 timeline
b'ExpressionEngine' disclosed a bug submitted by b'strukt' 
b'Arbitrary file upload when setting an avatar'
04 Apr 2018 timeline
b'ExpressionEngine' disclosed a bug submitted by b'strukt' 
b'Remote Code Execution in the Import Channel function'
04 Apr 2018 timeline
b'Airbnb' disclosed a bug submitted by b'bobrov' 
b'[airbnb.com] XSS via Cookie flash'
03 Apr 2018 timeline
b'Airbnb' disclosed a bug submitted by b'bobrov' 
b'[m.airbnb.com] CRLF Injection'
03 Apr 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'bl4de' 
b'[crud-file-server] Path Traversal allows to read arbitrary file from the server'
03 Apr 2018 timeline
b'Shopify' disclosed a bug submitted by b'bored-engineer' 
b'XSS on "widgets.shopifyapps.com" via "stripping" attribute and "shop" parameter'
03 Apr 2018 timeline
b'Mail.Ru' disclosed a bug submitted by b'obmihail' 
b'blind XXE in autodiscover parser'
03 Apr 2018 timeline
1 ... 473 474 475 476 477 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM