Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Ruby on Rails' disclosed a bug submitted by b'amartinfraguas' 
b'XSS vulnerabilities due to missing checks in tag helpers'
28 Jul 2023 timeline
b'Ruby on Rails' disclosed a bug submitted by b'gquadros_' 
b"Argument/Code Injection via ActiveStorage's image transformation functionality"
28 Jul 2023 timeline
b'Ruby on Rails' disclosed a bug submitted by b'meowday' 
b'Incorrect handling of certain characters passed to the redirection functionality in Rails can lead to a single-click XSS vulnerability.'
28 Jul 2023 timeline
b'Ruby on Rails' disclosed a bug submitted by b'ooooooo_q' 
b'ReDoS in Rack::Multipart'
28 Jul 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'selmelc' 
b'[curl] CVE-2023-32001: fopen race condition'
27 Jul 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ooooooo_q' 
b'[CVE-2022-44570] Possible Denial of Service Vulnerability in Racks Range header parsing'
27 Jul 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ooooooo_q' 
b'[CVE-2022-44571] Possible Denial of Service Vulnerability in Rack Content-Disposition parsing'
27 Jul 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ooooooo_q' 
b'[CVE-2022-44572] Possible Denial of Service Vulnerability in Racks RFC2183 boundary parsing'
27 Jul 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ooooooo_q' 
b'[CVE-2023-22796] Possible ReDoS based DoS vulnerability in Active Supports underscore'
27 Jul 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ooooooo_q' 
b'[CVE-2023-22799] Possible ReDoS based DoS vulnerability in GlobalID'
27 Jul 2023 timeline
b'People Interactive' disclosed a bug submitted by b'zishanadthandar' 
b'Origin IP found, Cloudflare bypassed'
27 Jul 2023 timeline
b'TikTok' disclosed a bug submitted by b'eye_' 
b'CSRF in seller-us.tiktok.com/profile/account-setting/delegation-login '
26 Jul 2023 timeline
b'Rockstar Games' disclosed a bug submitted by b'zuhnny1' 
b'XSS on rockstargames.com'
25 Jul 2023 timeline
b'curl' disclosed a bug submitted by b'selmelc' 
b'CVE-2023-32001: fopen race condition'
25 Jul 2023 timeline
b'EXNESS' disclosed a bug submitted by b'redshark1802' 
b'SSRF in graphQL query (pwapi.ex2b.com)'
24 Jul 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'rullzer' 
b'Password reset endpoint is not brute force protected'
21 Jul 2023 timeline
b'Node.js' disclosed a bug submitted by b'bensmyth' 
b"DiffieHellman doesn't generate keys after setting a key"
20 Jul 2023 timeline
b'Node.js' disclosed a bug submitted by b'm_r_beauchamp' 
b'node.js process aborts when processing x509 certs with invalid public key information'
20 Jul 2023 timeline
b'Node.js' disclosed a bug submitted by b'mattaustin' 
b'Process-based permissions can be bypassed with the "inspector" module. '
20 Jul 2023 timeline
b'Node.js' disclosed a bug submitted by b'haxatron1' 
b'Filesystem experimental permissions policy does not handle path traversal cases.'
20 Jul 2023 timeline
1 ... 51 52 53 54 55 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM