Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'[HTA2] XXE on https:// via SpellCheck Endpoint.'
15 May 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'[hta3] Remote Code Execution on '
15 May 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'0xmaruf' 
b'LDAP Server NULL Bind Connection Information Disclosure'
15 May 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cametome006' 
b'AEM misconfiguration leads to Information disclosure'
15 May 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'0r10nh4ck' 
b'Sensitive Data Exposure via wp-config.php file'
15 May 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'waterlord7788' 
b'Default Credentials on Kinetic Core System Console - https:///kinetic/app/'
15 May 2023 timeline
b'8x8 Bounty' disclosed a bug submitted by b'yassinek3ch' 
b'connect.8x8.com: Blind SSRF via /api/v2/chats/image-check allows for Internal Ports scan'
15 May 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'find_me_here' 
b"[ Continuation Report from #1814842 ] Can create articles using other users' NewsLetters"
15 May 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'lukasreschke' 
b'Reflected XSS vulnerability with full CSP bypass in Nextcloud installations using recommended bundle'
15 May 2023 timeline
b'GlassWire' disclosed a bug submitted by b'chip_sec' 
b'Facebook App API credentials leaked in the APK'
12 May 2023 timeline
b'WordPress' disclosed a bug submitted by b'chip_sec' 
b'PII of users can be downloaded from export pages'
12 May 2023 timeline
b'HackerOne' disclosed a bug submitted by b'iamr0000t' 
b'HTML injection in email at https://www.hackerone.com/'
12 May 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'spaceboy20' 
b"Attacker can unpin posts from companies he's not part of."
12 May 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'find_me_here' 
b'Attackers do not need to Pay for a Subscription to get the `Discussion Group URL` in `Paid Learning`'
12 May 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'encodedguy' 
b'Delete any LinkedIn comment on learning API of other users'
12 May 2023 timeline
b'U.S. Department of State' disclosed a bug submitted by b'doosec101' 
b'LDAP anonymous access enabled at certrep.pki.state.gov:389'
11 May 2023 timeline
b'IBM' disclosed a bug submitted by b'0xpugazh' 
b'Moodle XSS on s-immerscio.comprehend.ibm.com'
11 May 2023 timeline
b'IBM' disclosed a bug submitted by b'gdattacker' 
b'Subdomain Takeover Affecting at vex.weather.com'
10 May 2023 timeline
b'Mattermost' disclosed a bug submitted by b'uchihaluckycs' 
b'Reset password link sent over unsecured http protocol'
10 May 2023 timeline
b'Brave Software' disclosed a bug submitted by b'ameenbasha' 
b'download file type warning on Windows does not appear if "ask where to save file before downloading" setting is enabled'
10 May 2023 timeline
1 ... 60 61 62 63 64 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM