Top10 publishers:
bobrov117 
geeknik79 
linkks75 
sp1d3rs68 
jobert66 
someonenobbd60 
jon_bottarini49 
netfuzzer48 
haxta4ok0048 
ryat47 

the unofficial HackerOne disclosure timeline.

X
Nextcloud disclosed a bug submitted by bjoernv 
Generated passwords are not fully validated by HIBPValidator
01 Oct 2022 timeline
TikTok disclosed a bug submitted by ckerha 
Bypassing authorization of linked Instagram account
30 Sep 2022 timeline
Reddit disclosed a bug submitted by lu3ky-13 
Open Redirect on www.redditinc.com via `failed` query param bypass after fixed bug #1257753
30 Sep 2022 timeline
Reddit disclosed a bug submitted by criptex 
IDOR allows an attacker to modify the links of any user
30 Sep 2022 timeline
Reddit disclosed a bug submitted by heckintosh 
Unrestricted File Upload on reddit.secure.force.com
30 Sep 2022 timeline
Cloudflare Public Bug Bounty disclosed a bug submitted by path_network 
Lack of Packet Sanitation in Goflow Results in Multiple DoS Attack Vectors and Bugs
30 Sep 2022 timeline
Cloudflare Public Bug Bounty disclosed a bug submitted by lohigowda 
Password Policy Restriction Bypass
30 Sep 2022 timeline
Flickr disclosed a bug submitted by stevejubs 
Open Redirect
29 Sep 2022 timeline
Yelp disclosed a bug submitted by irfadps 
no rate limit in forgot password session
29 Sep 2022 timeline
Judge.me disclosed a bug submitted by penguinshelp 
XSS in Widget Review Form Preview in settings
29 Sep 2022 timeline
Slack disclosed a bug submitted by security_warrior 
CSV export/import functionality allows administrators to modify member and message content of a workspace
28 Sep 2022 timeline
Cloudflare Public Bug Bounty disclosed a bug submitted by albertspedersen 
Take over subdomains of r2.dev using R2 custom domains
28 Sep 2022 timeline
Node.js disclosed a bug submitted by zeyu2001 
DNS rebinding in --inspect (insufficient fix of CVE-2022-32212 affecting macOS devices)
28 Sep 2022 timeline
Yelp disclosed a bug submitted by raja404 
Server-side request forgery (ssrf)
28 Sep 2022 timeline
8x8 disclosed a bug submitted by rajauzairabdullah 
Directory Listing vulnerability on .packet8.net/php/include/
28 Sep 2022 timeline
Yelp disclosed a bug submitted by qualwin3001 
CORS Misconfiguration on Yelp
28 Sep 2022 timeline
Yelp disclosed a bug submitted by er_salil 
password field autocomplete enabled
27 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by thpless 
insecure gitlab repositories at [HtUS]
27 Sep 2022 timeline
Reddit disclosed a bug submitted by criptex 
XSS Reflected on reddit.com via url path
27 Sep 2022 timeline
1 2 3 ... 628
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM