Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Zomato' disclosed a bug submitted by b'prateek_0490' 
b'Admin Access to a Clone of Zomato Dashboard giving access to each and every Zomato Database'
28 Dec 2017 timeline
b'shopify-scripts' disclosed a bug submitted by b'dgaletic' 
b'Invalid read leading to a segfault'
28 Dec 2017 timeline
b'Zomato' disclosed a bug submitted by b'chriszielinski' 
b'User Profiles Leak PII in HTML Document for Mobile Browser User Agents'
28 Dec 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'dzmitry' 
b'Download attachments with traversal path into any sdcard directory (incomplete fix 106097)'
28 Dec 2017 timeline
b'LocalTapiola' disclosed a bug submitted by b'putsi' 
b'High server resource usage on captcha (viestinta.lahitapiola.fi)'
27 Dec 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'luigigubello' 
b'touch.mail.ru/messages - Stored XSS'
27 Dec 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'ruvlol' 
b'Unupdated ImageMagic leads to uninitialized server memory disclosure '
27 Dec 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'ruvlol' 
b'Stored XSS and html injection in biz.mail.ru'
27 Dec 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'ruvlol' 
b"A manager of a determinate group of users still might have access to any user account from any group that he doesn't administrate anymore."
27 Dec 2017 timeline
b'Mail.Ru' disclosed a bug submitted by b'buglloc' 
b'XSS on https://account.mail.ru/login via postMessage'
27 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'muber-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'lite:sess Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'udi-id Query Parameter Can Generate SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'SSL-protected Reflected XSS in m.uber.com'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'Configuration and/or source code files on uchat-staging.uberinternal.com can be viewed without OneLogin SSO Authentication '
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b"It's possible to view configuration and/or source code on uchat.awscorp.uberinternal.com without "
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'SSL-protected Reflected XSS in https://m.uber.com/0-dfffb25d2cf6ceeb0a27.js Endpoint'
26 Dec 2017 timeline
b'WordPress' disclosed a bug submitted by b'rahulpratap' 
b'Lack of Sanitization and Insufficient Authentication'
26 Dec 2017 timeline
b'Uber' disclosed a bug submitted by b'gregoryvperry' 
b'The Uber Promo Customer Endpoint Does Not Implement Multifactor Authentication, Blacklisting or Rate Limiting'
24 Dec 2017 timeline
1 ... 485 486 487 488 489 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM