Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'cpp: if (a+b>c) a=c-b is incorrect if a+b overflows'
13 Jun 2023 timeline
b'Omise' disclosed a bug submitted by b'kayuagung588' 
b'Subdomain takeover http://accessday.opn.ooo/'
11 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'rook1337' 
b'CVE-2023-29489 XSS in cpanel at [www.] - Securado, Oman'
09 Jun 2023 timeline
b'Brave Software' disclosed a bug submitted by b'roland_hack' 
b'Open redirect due to scanning QR code via brave browser'
08 Jun 2023 timeline
b'Basecamp' disclosed a bug submitted by b'fr4via' 
b"Arbitrary write in the application's data folder and arbitrary read of server's replies from 3rd party apps. "
07 Jun 2023 timeline
b'HackerOne' disclosed a bug submitted by b'mateuszek' 
b'Attachment in published HackerOne report exposure private program'
07 Jun 2023 timeline
b'Bitwarden' disclosed a bug submitted by b'mebeim' 
b'Biometric key is stored in Windows Credential Manager, accessible to other local unprivileged processes'
07 Jun 2023 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'albertspedersen' 
b'Cloudflare CASB Confused Deputy Problem'
07 Jun 2023 timeline
b'Mozilla Core Services' disclosed a bug submitted by b'zhero_' 
b'DOS via cache poisoning on [developer.mozilla.org]'
05 Jun 2023 timeline
b'Reddit' disclosed a bug submitted by b'mrzheev' 
b"Regression on dest parameter sanitization doesn't check scheme/websafe destinations"
03 Jun 2023 timeline
b'TikTok' disclosed a bug submitted by b'ahmedna126' 
b'IDOR in family pairing API'
02 Jun 2023 timeline
b'TikTok' disclosed a bug submitted by b'mrhavit' 
b'Reflected Cross-site Scripting (XSS) at https://www.tiktok.com/'
02 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'rektile404' 
b'Reflected xss on https://'
02 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'medokll0011' 
b'DOM-XSS'
02 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'pll25' 
b'Leaks of username and password leads to CVE-2018-18862 exploitation'
02 Jun 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'hackit_bharat' 
b'Basic auth header on WebDAV requests is not bruteforce protected'
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'mehmil' 
b'Arbitrary escape sequence injection in docker-machine from worker nodes'
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'cryptopone' 
b"Attacker is able to create,Edit & delete notes and leak the title of a victim's private personal snippet"
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'cryptopone' 
b"Attacker can create malicious child epics linked to a victim's epic in an unrelated group"
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'Stored XSS via Kroki diagram'
02 Jun 2023 timeline
1 ... 57 58 59 60 61 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM