Top10 publishers:
bobrov117 
geeknik76 
linkks75 
sp1d3rs66 
jobert61 
netfuzzer48 
jon_bottarini48 
ryat47 
guido45 Twitter
skavans42 

the unofficial HackerOne disclosure timeline.

X
DuckDuckGo disclosed a bug submitted by pmoc 
Reflected/Stored XSS on duckduckgo.com
10 Apr 2021 timeline
Mail.ru disclosed a bug submitted by dennisleo6 
read new emails from any inbox IOS APP in notification center
10 Apr 2021 timeline
Mail.ru disclosed a bug submitted by chutchut 
Local SQL Injection in Content Provider (ru.mail.data.contact.ContactsProvider) of Mail.ru for Android, version 12.2.0.29734
10 Apr 2021 timeline
U.S. General Services Administration disclosed a bug submitted by amannnnnnnnnnnnnnn 
CRLF INJECTION
10 Apr 2021 timeline
Uber disclosed a bug submitted by m4ll0x0k 
Exposedin apk file - devbuilds.uber.com
09 Apr 2021 timeline
Glassdoor disclosed a bug submitted by bendtheory 
XSS at https://www.glassdoor.com/Salary/* via filter.jobTitleExact
09 Apr 2021 timeline
VK.com disclosed a bug submitted by manaenckov 
Open Redirect VKMA
09 Apr 2021 timeline
VK.com disclosed a bug submitted by onlymalelove 
vk.com. ( , .)
09 Apr 2021 timeline
Shopify disclosed a bug submitted by fatal0 
XSS at https://exchangemarketplace.com/blogsearch
09 Apr 2021 timeline
Shopify disclosed a bug submitted by g4mm4 
https://themes.shopify.com::: Host header web cache poisoning lead to DoS
08 Apr 2021 timeline
Shopify disclosed a bug submitted by francisbeaudoin 
[h1-2102] Partner's team member with no permission can retrieve services financial data
08 Apr 2021 timeline
Shopify disclosed a bug submitted by ramsexy 
[h1-2102] [Yaworski's Broskis] Low privilege user can read POS PINs via graphql and elevate his privilege
08 Apr 2021 timeline
Shopify disclosed a bug submitted by luc1d 
Stored XSS on apps.shopify.com
08 Apr 2021 timeline
U.S. Dept Of Defense disclosed a bug submitted by skarsom 
Sending trusted and emails through public API endpoint in site
08 Apr 2021 timeline
U.S. Dept Of Defense disclosed a bug submitted by skarsom 
RCE in subdomain via CVE-2017-1000486
08 Apr 2021 timeline
U.S. Dept Of Defense disclosed a bug submitted by skarsom 
IDOR on https:// via POST UID enables database scraping
08 Apr 2021 timeline
Shopify disclosed a bug submitted by fr4via 
The POS app doesn't revoke the Xauth token
08 Apr 2021 timeline
Shopify disclosed a bug submitted by saltymermaid 
Staff with no permissions could possibly list and accept billing promotions
08 Apr 2021 timeline
OpenSSL (IBB) disclosed a bug submitted by reaperhulk 
Integer overflow in CipherUpdate
08 Apr 2021 timeline
1 2 3 ... 531
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM