Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Khan Academy' disclosed a bug submitted by b'fdeleite' 
b'S3 bucket takeover [learn2.khanacademy.org]'
29 Dec 2022 timeline
b'MTN Group' disclosed a bug submitted by b'thewikiii' 
b'Wordpress users Disclosure [ /wp-json/wp/v2/users/ ] Not Resolved () '
28 Dec 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'jrs53' 
b'Leak of sensitive values to Airflow rendered template'
27 Dec 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'spaceraccoon' 
b'SMTP Command Injection in Appointment Emails via Newlines'
27 Dec 2022 timeline
b'curl' disclosed a bug submitted by b'bagder' 
b'CVE-2022-43552: HTTP Proxy deny use-after-free'
26 Dec 2022 timeline
b'Linktree' disclosed a bug submitted by b'twelvesix' 
b'Account takeover - improper validation of jwt signature (with regards to experiation date claim)'
26 Dec 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'tobiaskaminsky' 
b'nextcloudcmd incorrectly trusts bad TLS certificates'
25 Dec 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'andyscherzinger' 
b'Talk Android broadcast receiver is not protected by broadcastPermission allowing malicious apps to communicate'
25 Dec 2022 timeline
b'MTN Group' disclosed a bug submitted by b'coyemerald' 
b'Developer Mistake'
25 Dec 2022 timeline
b'MTN Group' disclosed a bug submitted by b'coyemerald' 
b'Exposure Of Admin Username & Password'
25 Dec 2022 timeline
b'MTN Group' disclosed a bug submitted by b'netboy' 
b'Information Disclosure Leads To User Data Leak'
24 Dec 2022 timeline
b'Acronis' disclosed a bug submitted by b'melar_dev' 
b'mysql credentials exposed on - https://cz.acronis.com/docker-compose.yml'
24 Dec 2022 timeline
b'Omise' disclosed a bug submitted by b'sim4n6' 
b'Secret API Key is logged in cleartext '
23 Dec 2022 timeline
b'Khan Academy' disclosed a bug submitted by b'moom825' 
b'xss due to incorrect handling of postmessages'
23 Dec 2022 timeline
b'GitHub' disclosed a bug submitted by b'ali_shehab' 
b'Managing Pages '
22 Dec 2022 timeline
b'Stripe' disclosed a bug submitted by b'akashhamal0x01' 
b'Mass account takeover!'
21 Dec 2022 timeline
b'Quantopian' disclosed a bug submitted by b'irisrumtub' 
b'Stored cross-site scripting in dataset owner.'
21 Dec 2022 timeline
b'Quantopian' disclosed a bug submitted by b'irisrumtub' 
b'Ability to perform various POST requests on quantopian.com as a different user - insecure by design.'
21 Dec 2022 timeline
b'Quantopian' disclosed a bug submitted by b'irisrumtub' 
b'Cross-site scripting via hardcoded front-end watched expression.'
21 Dec 2022 timeline
b'Quantopian' disclosed a bug submitted by b'irisrumtub' 
b'Cross-site scripting on algorithm collaborator '
21 Dec 2022 timeline
1 ... 77 78 79 80 81 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM