Top10 publishers:
b'bobrov'117 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'sp1d3rs'68 
b'someonenobbd'62 
b'nyymi'53 
b'jon_bottarini'49 
b'haxta4ok00'48 
b'netfuzzer'48 

the unofficial HackerOne disclosure timeline.

X
b'Tennessee Valley Authority' disclosed a bug submitted by b'itssixtynein' 
b'Admin.MyTVA.com Customer lookup and internal notes bypass'
13 Oct 2023 timeline
b'Tennessee Valley Authority' disclosed a bug submitted by b'tvmbug' 
b'xss reflected - pqm.tva.com'
13 Oct 2023 timeline
b'Mozilla Core Services' disclosed a bug submitted by b'nicholas_cw' 
b'Potential Spoofing Risk through Firefox Private Relay Service'
13 Oct 2023 timeline
b'Nord Security' disclosed a bug submitted by b'tvmbug' 
b'Stored XSS at nordvpn.com'
12 Oct 2023 timeline
b'Mars' disclosed a bug submitted by b'ideborah' 
b'Test 4 '
11 Oct 2023 timeline
b'Brave Software' disclosed a bug submitted by b'nick0ve' 
b'UAF on JSEthereumProvider'
11 Oct 2023 timeline
b'curl' disclosed a bug submitted by b'w0x42' 
b'CVE-2023-38546: cookie injection with none file'
11 Oct 2023 timeline
b'curl' disclosed a bug submitted by b'raysatiro' 
b'CVE-2023-38545: socks5 heap buffer overflow'
11 Oct 2023 timeline
b'Stripe' disclosed a bug submitted by b'zerodivisi0n' 
b'Limited path traversal in Node.js SDK leads to PII disclosure'
10 Oct 2023 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'mattaustin' 
b'RCE of Burp Scanner / Crawler via Clickjacking '
10 Oct 2023 timeline
b'Cosmos' disclosed a bug submitted by b'strikeout' 
b'RCE and DoS in Cosmovisor'
10 Oct 2023 timeline
b'On ' disclosed a bug submitted by b'mr_sparrow' 
b'No Rate Limit in Login Page'
09 Oct 2023 timeline
b'Acronis' disclosed a bug submitted by b'und3sc0n0c1d0' 
b'Stored XSS in plan name field (Acronis Cyber Protect)'
09 Oct 2023 timeline
b'IRCCloud' disclosed a bug submitted by b'lotsofloops' 
b'XSS from Mastodon embeds'
09 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'(CVE-2023-32006) Permissions policies can impersonate other modules in using module.constructor.createRequire() '
08 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'marshallofsound' 
b'Context isolation bypass via nested unserializable return value'
07 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'(CVE-2023-32003) fs.mkdtemp() and fs.mkdtempSync() are missing getValidatedPath() checks'
07 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'(CVE-2023-32004) Permission model bypass by specifying a path traversal sequence in a Buffer'
07 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tniessen' 
b'OpenSSL engines can be used to bypass and/or disable the Node.js permission model'
07 Oct 2023 timeline
b'WordPress' disclosed a bug submitted by b'tanvir0x' 
b'Previously created sessions continue being valid after 2FA activation'
07 Oct 2023 timeline
1 ... 4 5 6 7 8 ... 680
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM