Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'ali_hassan_khan' 
b"Cloudflare is not properly deleting user's account"
13 Apr 2023 timeline
b'MetaMask' disclosed a bug submitted by b'renniepak' 
b'Possible to spoof Origin in "Connected Sites"'
13 Apr 2023 timeline
b'TikTok' disclosed a bug submitted by b'h4x0r_dz' 
b'Unrestricted File Upload on https://partner.tiktokshop.com/wsos_v2/oec_partner/upload'
12 Apr 2023 timeline
b'ownCloud' disclosed a bug submitted by b'lukasreschke' 
b'Remote Code Execution on ownCloud instances with ImageMagick installed'
12 Apr 2023 timeline
b'ownCloud' disclosed a bug submitted by b'atorralba' 
b'GitHub Security Lab (GHSL) Vulnerability Report: SQLInjection in FileContentProvider.kt (GHSL-2022-059)'
12 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Ability to read any emails through IDOR on Nextcloud Mail'
12 Apr 2023 timeline
b'HackerOne' disclosed a bug submitted by b'refaat01' 
b'adding h1_analyst_* to username for normal users '
12 Apr 2023 timeline
b'Brave Software' disclosed a bug submitted by b'mrzheev' 
b'UXss on brave browser via scan QR Code'
11 Apr 2023 timeline
b'Expedia Group Bug Bounty' disclosed a bug submitted by b'exploitmsf' 
b'Sensitive information for phpinfo.php at https://products.ean.com/'
11 Apr 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'anandpingsafe' 
b"Can delete other user's post and company page post"
11 Apr 2023 timeline
b'Weblate' disclosed a bug submitted by b'triplesided' 
b'Testing flow includes a DeepSource secret'
11 Apr 2023 timeline
b'U.S. Department of State' disclosed a bug submitted by b'nepalihacker0x01' 
b'IDOR in TalentMAP API can be abused to enumerate personal information of all the users'
11 Apr 2023 timeline
b'MetaMask' disclosed a bug submitted by b'ronnyx2017' 
b'Bypass parsing of transaction data, users on the phishing site will transfer/approve ERC20 tokens without being alerted'
10 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Ability to control the filename when uploading a logo or favicon on theming'
10 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Full Passcode bypass on Nextcloud App iOS'
10 Apr 2023 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'ostracize' 
b'Session mismatch leading to potential account takeover (local access required)'
10 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'mdfarhanchowdhuryhasin' 
b'Website PHP source code returned in javascript'
10 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ht0k' 
b'Security Unfavorable Specifications and Implementations in the CGI::Cookie Class'
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ht0k' 
b"Ruby's CGI library has HTTP response splitting (HTTP header injection), leaking confidential information"
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'bn00rdhuis' 
b'Use of Cryptographically Weak Pseudo-Random Number Generator in WebCrypto keygen'
09 Apr 2023 timeline
1 ... 64 65 66 67 68 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM