Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'inDrive' disclosed a bug submitted by b'bogdantcaciuc' 
b'Full access to InDrive jira panel via exposed API token '
28 Jun 2023 timeline
b'inDrive' disclosed a bug submitted by b'spongebhav' 
b"Rider can forcefully get passenger's order accepted resulting in multiple impacts including PII reveal and more mentioned in the report."
28 Jun 2023 timeline
b'Ruby on Rails' disclosed a bug submitted by b'vairelt' 
b'Escape Sequence Injection vulnerability in Rack'
28 Jun 2023 timeline
b'Ruby on Rails' disclosed a bug submitted by b'ghiculescu' 
b'Possible DOS in app with crashing `exceptions_app`'
28 Jun 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'bhmth' 
b'User scoped external storage can be used to gather credentials of other users '
27 Jun 2023 timeline
b'8x8 Bounty' disclosed a bug submitted by b'exhandler' 
b'connect.8x8.com: Too much resource consumption of the server due to incorrect date range control via /api/v1/reports?dateFrom='
26 Jun 2023 timeline
b'Automattic' disclosed a bug submitted by b'riadalrashed' 
b'Stored XSS on wordpress.com'
26 Jun 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'kurohiro' 
b'CVE-2023-28321: IDN wildcard match'
25 Jun 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'kurohiro' 
b'CVE-2023-28322: more POST-after-PUT confusion'
25 Jun 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'wct' 
b'CVE-2023-28319: UAF in SSH sha256 fingerprint check'
25 Jun 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'christophwurst' 
b'Contacts only sanitizes PHOTO svg if mime type is all lower case'
24 Jun 2023 timeline
b'ownCloud' disclosed a bug submitted by b'rullzer' 
b'Federated share permissions can be increased by recipient'
24 Jun 2023 timeline
b'Slack' disclosed a bug submitted by b'salh4ckr' 
b'Ability to join an arbitrary workspace by utilizing a proxy to manipulate invite links'
23 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'0xmzm' 
b'External service interaction ( DNS and HTTP ) in www.'
23 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'samuelsiv' 
b'Docker Registry without authentication leads to docker images download'
23 Jun 2023 timeline
b'Mars' disclosed a bug submitted by b'0xs4m' 
b"IDOR ' can delete any animal from other account ' at https://www.miroyalcanin.cl/ "
23 Jun 2023 timeline
b'Mars' disclosed a bug submitted by b'0xs4m' 
b"Stored XSS via ' profile ' at https://www.miroyalcanin.cl/"
23 Jun 2023 timeline
b'Mars' disclosed a bug submitted by b'ze2paac' 
b'CRLF Inection at `banfieldassets.com`'
23 Jun 2023 timeline
b'Mars' disclosed a bug submitted by b'ze2paac' 
b'Information Exposure Through Directory Listing'
23 Jun 2023 timeline
b'Mars' disclosed a bug submitted by b'0xs4m' 
b"' Full Account Takeover ' at https://www.miroyalcanin.cl/"
23 Jun 2023 timeline
1 ... 54 55 56 57 58 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM