Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Nextcloud' disclosed a bug submitted by b'hackit_bharat' 
b'Basic auth header on WebDAV requests is not bruteforce protected'
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'mehmil' 
b'Arbitrary escape sequence injection in docker-machine from worker nodes'
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'cryptopone' 
b"Attacker is able to create,Edit & delete notes and leak the title of a victim's private personal snippet"
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'cryptopone' 
b"Attacker can create malicious child epics linked to a victim's epic in an unrelated group"
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'Stored XSS via Kroki diagram'
02 Jun 2023 timeline
b'HackerOne' disclosed a bug submitted by b'alone_h1' 
b'Any one can view collaborater email address via path /reports/<id>/participants '
01 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'bull' 
b'Account takeover due to insufficient URL validation on RelayState parameter'
30 May 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'unknownsh' 
b'Blind SSRF as normal user from mailapp'
30 May 2023 timeline
b'GitLab' disclosed a bug submitted by b'mike12' 
b'Stored XSS in merge request pages'
30 May 2023 timeline
b'GitLab' disclosed a bug submitted by b'mike12' 
b'Blind SSRF in FogBugz project import'
30 May 2023 timeline
b'GitLab' disclosed a bug submitted by b'mike12' 
b'Domain Takeover - gl-canary.freetls.fastly.net'
30 May 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'nyymi' 
b' CVE-2023-28320 - siglongjmp race condition'
26 May 2023 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'albertspedersen' 
b'Privilege escalation to root in Pages build image v2'
26 May 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'bean-zhang' 
b'Authenticated but unauthorized users may enumerate Application names via the API'
25 May 2023 timeline
b'Kubernetes' disclosed a bug submitted by b'snoopysecurity' 
b'Git Arg Injection in kubernetes-sigs/release-sdk '
25 May 2023 timeline
b'Kubernetes' disclosed a bug submitted by b'gaffy' 
b'Bypass validation parts in AWS IAM Authenticator for Kubernetes'
25 May 2023 timeline
b'curl' disclosed a bug submitted by b'wct' 
b'CVE-2023-28319: UAF in SSH sha256 fingerprint check'
24 May 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'ultrapowa' 
b'Entire database of emails exposed through URN injection'
22 May 2023 timeline
b'Expedia Group Bug Bounty' disclosed a bug submitted by b'maskopatol' 
b'https://www.wotif.com/vc/blog/info.php script is prone to reflected HTML/CSS injection and COOKIE leak'
20 May 2023 timeline
b'curl' disclosed a bug submitted by b'dhananjay09' 
b'Cache purge requests are not authenticated'
20 May 2023 timeline
1 ... 70 71 72 73 74 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM