Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'55 
b'ooooooo_q'49 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'AWS VDP' disclosed a bug submitted by b'necr0mancer' 
b'Information Disclosure Due To exposed .env file (Directory Listing) at '
22 Oct 2024 timeline
b'Endless Group' disclosed a bug submitted by b'seqode' 
b'Weak Password Policy via DirectAdmin Password Change Functionality'
22 Oct 2024 timeline
b'MTN Group' disclosed a bug submitted by b'mathara' 
b'Reflected - XSS'
21 Oct 2024 timeline
b'MTN Group' disclosed a bug submitted by b'mathara' 
b'No rate limit in OTP code sending'
21 Oct 2024 timeline
b'WordPress' disclosed a bug submitted by b'wshadow' 
b'Unauthenticated WordPress Database Repair DoS'
18 Oct 2024 timeline
b'Mozilla' disclosed a bug submitted by b'ghaazy' 
b'sentry Auth Token exposed publicly in docker hub image '
18 Oct 2024 timeline
b'Mozilla' disclosed a bug submitted by b'ghaazy' 
b'paypal cleient_id And stripe api key indexed on web arcive'
18 Oct 2024 timeline
b'Mozilla' disclosed a bug submitted by b'sushantd19' 
b'Race condition leads to add more than 5 email at Data breaches monitor system at https://stage.firefoxmonitor.nonprod.cloudops.mozgcp.net'
18 Oct 2024 timeline
b'Mozilla' disclosed a bug submitted by b'ghaazy' 
b'two aws access key and secret key and database username and password exposed '
18 Oct 2024 timeline
b'Automattic' disclosed a bug submitted by b'nightpool' 
b'Timeline API returns private post when target of a push notification'
17 Oct 2024 timeline
b'GitHub' disclosed a bug submitted by b'pinguluk' 
b'Information Leakage via Clicked Link in GitHub Repository (Fingerprinting)'
17 Oct 2024 timeline
b'Sorare' disclosed a bug submitted by b'thebeast99' 
b'Circular based introspetion Query leading to single request denial of service and cost consumption and query cost on api.sorare.com/graphql'
17 Oct 2024 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'4xpl0r3r' 
b'fs.fchown/fchmod bypasses permission model'
16 Oct 2024 timeline
b'Enjin' disclosed a bug submitted by b'ndizon_' 
b'Host header injection leads to account takeover'
15 Oct 2024 timeline
b'Enjin' disclosed a bug submitted by b'mo_salah12' 
b'Race Condition on Create API Function'
15 Oct 2024 timeline
b'Rocket.Chat' disclosed a bug submitted by b'yash24' 
b'IDOR vulnerability leads to Deleting message after leaving/getting banned from group using message ID'
13 Oct 2024 timeline
b'GitHub' disclosed a bug submitted by b'ahacker1' 
b'SAML Signature verification bypass allows logging into any user (with specific conditions)'
10 Oct 2024 timeline
b'GitLab' disclosed a bug submitted by b'a92847865' 
b'DOS: taking down a 1k users Gitlab EE instance or multiple Sidekiq instances by importing a malicious repo from a Github EE self-hosted server'
09 Oct 2024 timeline
b'GitLab' disclosed a bug submitted by b'fdeleite' 
b'Subdomain takeover in Gitlab pages'
09 Oct 2024 timeline
1 2 3 ... 712
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM