Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Node.js third-party modules' disclosed a bug submitted by b'bl4de' 
b'[serve] Directory index of arbitrary folder available due to lack of sanitization of %2e and %2f characters in url'
23 Jan 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ysx' 
b'[augustine] Static Web Server Directory Traversal via Crafted GET Request'
23 Jan 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ysx' 
b'[lactate] Static Web Server Directory Traversal via Crafted GET Request'
23 Jan 2018 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ysx' 
b'[redis-commander] Reflected SWF XSS via vulnerable "clipboard.swf" component'
23 Jan 2018 timeline
b'Starbucks' disclosed a bug submitted by b'bigbug' 
b'SQL injection in partner id field on https://www.teavana.com (Sign-up form)'
23 Jan 2018 timeline
b'Starbucks' disclosed a bug submitted by b'bobrov' 
b'[stagecafrstore.starbucks.com] CRLF Injection, XSS'
22 Jan 2018 timeline
b'HackerOne' disclosed a bug submitted by b'bigbug' 
b'Common response suggestion is sent to Google Analytics when user accepts duplicate comment Genius suggestion'
22 Jan 2018 timeline
b'Mavenlink' disclosed a bug submitted by b'aroly' 
b"Information disclosure when trying to delete an expense's attachment on m.mavenlink.com "
20 Jan 2018 timeline
b'QIWI' disclosed a bug submitted by b'tikoo_sahil' 
b'Information disclosure on https://paycard.rapida.ru'
20 Jan 2018 timeline
b'concrete5' disclosed a bug submitted by b'sts' 
b'Reflected XSS vulnerability in Database name field on installation screen'
20 Jan 2018 timeline
b'HackerOne' disclosed a bug submitted by b'666reda' 
b'Submitted reports state logs leakage'
19 Jan 2018 timeline
b'Inflection' disclosed a bug submitted by b'hackedbrain' 
b'Information Disclosure and Privilege Escalation in app.goodhire.com/member/developers/api-settings'
18 Jan 2018 timeline
b'SEMrush' disclosed a bug submitted by b'inferno-' 
b'Reflected XSS using Header Injection'
18 Jan 2018 timeline
b'Blockstack' disclosed a bug submitted by b'firestone' 
b'Weak crossdomain.xml'
18 Jan 2018 timeline
b'Pushwoosh' disclosed a bug submitted by b'protector47' 
b'Development configuration file'
18 Jan 2018 timeline
b'shopify-scripts' disclosed a bug submitted by b'ahihi' 
b'SEGV on ary_concat'
17 Jan 2018 timeline
b'shopify-scripts' disclosed a bug submitted by b'ahihi' 
b'heap-buffer-overflow in OP_R_BREAK'
17 Jan 2018 timeline
b'shopify-scripts' disclosed a bug submitted by b'ahihi' 
b'heap-use-after-free in OP_RESCUE'
17 Jan 2018 timeline
b'Showmax' disclosed a bug submitted by b'ven0ms' 
b'Query string parameter modifications returned in page'
16 Jan 2018 timeline
b'AlienVault ' disclosed a bug submitted by b'cujanovic' 
b'DNS pinning SSRF'
16 Jan 2018 timeline
1 ... 481 482 483 484 485 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM