Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Rocket.Chat' disclosed a bug submitted by b'gronke' 
b'NoSQL injection leaks visitor token and livechat messages'
11 Jul 2024 timeline
b'Mars' disclosed a bug submitted by b'0x999' 
b'0 Click account takeover via timed requests to forgot-password (single-packet attack)'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'aloneh1' 
b'Reports submitted by a non 2fa setupped user account can be transferred to a 2fa require submission program '
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'iam_srpk' 
b"2fa can't be activated on app.pullrequest.com"
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'pranshux0x_' 
b'Two factor authentication bypass'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'blakfly' 
b'Session Not Expire / 2FA Bypass'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'deepmarketer' 
b'2FA Bypass via Leaked Cookies'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'bob004x' 
b'Two-factor authentication bypass lead to information disclosure about the program and all hackers participate'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'5zdob13' 
b'Reset the 2FA of the user which can lead to Account Takeover'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'the-white-evil' 
b"Bypassing the victim's phone number OTP in the account recovery process on the https://hackerone.com/settings/auth/setup_account_recovery"
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'raymatp' 
b'2FA requirement bypass when claiming bounty '
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'xklepxn' 
b'Improper Authentication - 2FA OTP Reusable'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'011alsanosi' 
b'Bypassing Two-Factor Authentication via Account Deactivation and Password Reset'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'abdulprkr' 
b'Business Logic error leads to bypass 2FA requirement '
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'a_kos' 
b'Hackers can Invite Collaborators Without 2FA on Programs Requiring 2FA'
11 Jul 2024 timeline
b'HackerOne' disclosed a bug submitted by b'noob_but_cut3' 
b'TOTP Authenticator implementation Accepts Expired Codes'
11 Jul 2024 timeline
b'Rocket.Chat' disclosed a bug submitted by b'itssixtynein' 
b'Rocket.Chat Desktop client fails to open browser on 3rd party external actions from PDF documents'
11 Jul 2024 timeline
b'LY Corporation' disclosed a bug submitted by b'yinmo' 
b'File sizes may be manipulated into negative numbers when uploading'
10 Jul 2024 timeline
b'LY Corporation' disclosed a bug submitted by b'nightm4re' 
b'XSS on LINE CAREERS'
10 Jul 2024 timeline
b'Basecamp' disclosed a bug submitted by b'fr4via' 
b"Path traversal in deeplink query parameter can expose any user's private info to a public directory (one click)"
09 Jul 2024 timeline
1 ... 51 52 53 54 55 ... 752
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM