Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Informatica' disclosed a bug submitted by b'growler09' 
b'EXIF metadata not stripped from profile image'
18 Jun 2025 timeline
b'Node.js' disclosed a bug submitted by b'kenballus' 
b'Improper HTTP header block termination in llhttp'
13 Jun 2025 timeline
b'Informatica' disclosed a bug submitted by b'xbow' 
b'[20.98.103.245] Cross-Site Scripting (XSS) via /ssl-vpn/getconfig.esp at GlobalProtect VPN Portal'
13 Jun 2025 timeline
b'Rootstock Labs' disclosed a bug submitted by b'guido' 
b'Crafted smart contract can take 8 minutes to execute due to bug in modexp precompile.'
13 Jun 2025 timeline
b'Rootstock Labs' disclosed a bug submitted by b'spacewasp' 
b'DOS of RSKJ server'
13 Jun 2025 timeline
b'Lichess' disclosed a bug submitted by b'closec4ll' 
b'Improper Authentication Throttling Allows Attacker-Controlled Account Lockouts '
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'bugbountywithmarco' 
b'IDOR on in-app hardcoded zombie endpoint '
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'bugbountywithmarco' 
b'Bypassing Bronze Partner Wallet Restriction to Accept Trips with Negative Balance'
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'grassye' 
b'Ability to increase any customer offered fare (BAC)'
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'back2arie' 
b'Broken Access Control (IDOR) in Booking Detail and Bids Could Leads to Sensitive Information Disclosure'
13 Jun 2025 timeline
b'Hemi VDP' disclosed a bug submitted by b'1_ali_raza' 
b'WordPress Version Exposure via /wp-links-opml.php on hemi.xyz'
13 Jun 2025 timeline
b'Mars' disclosed a bug submitted by b'morphykutay' 
b'[XSS] Reflected XSS via POST request in ()'
12 Jun 2025 timeline
b'Rootstock Labs' disclosed a bug submitted by b'guido' 
b'Crafted smart contract can take 1.5 minutes to execute due to inefficient CODESIZE implementation'
12 Jun 2025 timeline
b'Rootstock Labs' disclosed a bug submitted by b'guido' 
b'Crafted smart contract can take ~23 seconds to execute due to immense error string construction'
12 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'bugbountywithmarco' 
b'Lack of Feedback Validation Permits Arbitrary Driver Ratings'
12 Jun 2025 timeline
b'Lichess' disclosed a bug submitted by b'immm' 
b'Path Traversal Vulnerability in Lila Project'
09 Jun 2025 timeline
b'HackerOne' disclosed a bug submitted by b'root_geek280' 
b'IDOR Vulnerability at AddTagToAssets operation name'
08 Jun 2025 timeline
b'Lichess' disclosed a bug submitted by b'oblivionsage' 
b'ImageId Format Injection in Image Upload Endpoint'
06 Jun 2025 timeline
b'hostinger ' disclosed a bug submitted by b'aziz0x48' 
b'1 Click Account Takeover via Auth Token Theft on marketing.hostinger.com'
06 Jun 2025 timeline
1 2 3 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM