Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Mars' disclosed a bug submitted by b'reinhardtthe' 
b'insecure deserilize object leads to RCE On Sitecore (CVE--27218)'
12 May 2025 timeline
b'Mars' disclosed a bug submitted by b'bughunter0x7' 
b'Users Data Exposure via Insecure Endpoint'
12 May 2025 timeline
b'Mars' disclosed a bug submitted by b'imeng' 
b'debug.log leaked []'
12 May 2025 timeline
b'Mars' disclosed a bug submitted by b'thpless' 
b'massive PII leakage for '
12 May 2025 timeline
b'Mars' disclosed a bug submitted by b'bughunter0x7' 
b'change part of personal information all users'
12 May 2025 timeline
b'curl' disclosed a bug submitted by b'antypanty' 
b'Memory Leak'
10 May 2025 timeline
b'Automattic' disclosed a bug submitted by b'root_geek280' 
b'Race condition on add 1 free domain'
09 May 2025 timeline
b'XVIDEOS' disclosed a bug submitted by b'samtime' 
b'Enable 2FA without verifying the email'
09 May 2025 timeline
b'HackerOne' disclosed a bug submitted by b'light3r' 
b'Ability to access policy and updates for unauthorized program'
08 May 2025 timeline
b'curl' disclosed a bug submitted by b'oblivionsage' 
b'CRLF Injection in `--proxy-header` allows extra HTTP headers (CWE-93)'
08 May 2025 timeline
b'Khan Academy' disclosed a bug submitted by b'firec4t' 
b'Unauthorized Account Access via Leaked Credentials in URL Format (Account Takeover )'
07 May 2025 timeline
b'IBM' disclosed a bug submitted by b'0x4bdo' 
b'Path Traversal Vulnerability found on IBM Cloud'
07 May 2025 timeline
b'LinkedIn' disclosed a bug submitted by b'nagu123' 
b'HTML Injection in LinkedIn Premium Support Chat'
07 May 2025 timeline
b'Dust' disclosed a bug submitted by b'yoyomiski' 
b'BAC Bypass chatbot restrictions via unauthorized mention injection'
06 May 2025 timeline
b'curl' disclosed a bug submitted by b'evilginx' 
b'HTTP/3 Stream Dependency Cycle Exploit'
04 May 2025 timeline
b'RubyGems' disclosed a bug submitted by b'jagat-singh' 
b'`/names.nsf` and all `/names*` files route to public API on rubygems.org'
03 May 2025 timeline
b'Fastly VDP' disclosed a bug submitted by b'hasn0x' 
b'Open Redirect on https://api.fastly.com/'
02 May 2025 timeline
b'IBM' disclosed a bug submitted by b'muhammadwaseem3' 
b'Middleware Authentication Bypass on IBM Portal'
02 May 2025 timeline
b'Dust' disclosed a bug submitted by b'sjalu' 
b'Stored XSS in File Upload Leads to Privilege Escalation and Full Workspace Takeover'
02 May 2025 timeline
1 2 3 ... 727
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM