Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'55 
b'ooooooo_q'49 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Mozilla' disclosed a bug submitted by b'bashbdeer' 
b'csrftoken not unique to session or specific user and csrfmiddlewaretoken can be altered'
20 Nov 2024 timeline
b'Acronis' disclosed a bug submitted by b'tomblorg' 
b'Reflected XSS in https://www.acronis.com/products/cyber-protect/trial/'
20 Nov 2024 timeline
b'Planet Labs' disclosed a bug submitted by b'y0usef' 
b'Api data leak'
20 Nov 2024 timeline
b'Mars' disclosed a bug submitted by b'mo_salah12' 
b'RXSS in via S parameter '
19 Nov 2024 timeline
b'Mars' disclosed a bug submitted by b'mo_salah12' 
b'sensitive data-creds for database - private key'
19 Nov 2024 timeline
b'Mars' disclosed a bug submitted by b'mo_salah12' 
b'CSRF in Delete Pet Function'
19 Nov 2024 timeline
b'Mars' disclosed a bug submitted by b'e5p3ctr0x96' 
b'Reflected XSS on formaction parameter'
19 Nov 2024 timeline
b'AWS VDP' disclosed a bug submitted by b'zolaer9527' 
b'A potential risk in the cloudFrontExtensionsConsole which can be used to privilege escalation.'
19 Nov 2024 timeline
b'HackerOne' disclosed a bug submitted by b'madara_' 
b'Hackerone supports accounts organitation takeover'
19 Nov 2024 timeline
b'Cosmos' disclosed a bug submitted by b'l33thaxor' 
b'Heap-Buffer-Overread in contains_whitespace when calling parser_validate after supplying a maliciously crafted buffer to parser_parse'
19 Nov 2024 timeline
b'Nextcloud' disclosed a bug submitted by b'cx75fa' 
b'Share information of Tables app is not limited to affected users '
18 Nov 2024 timeline
b'Omise' disclosed a bug submitted by b'ndizon_' 
b'Open redirect Via X-Forwarded-Host'
17 Nov 2024 timeline
b'Nextcloud' disclosed a bug submitted by b'tuyenee' 
b'Nextcloud Tables app - inserting rows to an arbitrary table possible'
17 Nov 2024 timeline
b'MTN Group' disclosed a bug submitted by b'offensiveops' 
b'CVE-2017-9822 DotNetNuke Cookie Deserialization Remote Code Execution (RCE) on lonidoor.mtn.ci'
16 Nov 2024 timeline
b'Nextcloud' disclosed a bug submitted by b'maccs' 
b'User can copy locked folders and gain access to the contents'
16 Nov 2024 timeline
b'Nextcloud' disclosed a bug submitted by b'kesselb' 
b'Open redirect when logging in with user_oidc'
15 Nov 2024 timeline
b'Nextcloud' disclosed a bug submitted by b'lukasreschke' 
b'Attachments folder for Text app is accessible on Files Drop/Password protected shares'
15 Nov 2024 timeline
b'Nextcloud' disclosed a bug submitted by b'shushangw' 
b'Mail auto configurator can be tricked into sending account information to wrong servers '
15 Nov 2024 timeline
b'MTN Group' disclosed a bug submitted by b'offensiveops' 
b'Unauthenticated phpinfo()files could lead to ability file read at h3f6.n1.ips.mtn.co.ug '
15 Nov 2024 timeline
1 2 3 ... 714
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM