Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Full Passcode bypass on Nextcloud App iOS'
10 Apr 2023 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'ostracize' 
b'Session mismatch leading to potential account takeover (local access required)'
10 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'mdfarhanchowdhuryhasin' 
b'Website PHP source code returned in javascript'
10 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ht0k' 
b'Security Unfavorable Specifications and Implementations in the CGI::Cookie Class'
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ht0k' 
b"Ruby's CGI library has HTTP response splitting (HTTP header injection), leaking confidential information"
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'bn00rdhuis' 
b'Use of Cryptographically Weak Pseudo-Random Number Generator in WebCrypto keygen'
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'mhdawson_' 
b'Inadequate Encryption Strength in nodejs-current reads openssl.cnf from /home/iojs/build/... upon startup on MacOS'
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'vwx7' 
b'HTTP Request Smuggling Due to Incorrect Parsing of Header Fields'
09 Apr 2023 timeline
b'Elastic' disclosed a bug submitted by b'dee-see' 
b'Synthetics Recorder: Code injection when recording website with malicious content'
08 Apr 2023 timeline
b'ResMed' disclosed a bug submitted by b'pranav-pranayx01' 
b'[shop.resmed.com]CSRF leads to Unsubscribe victim from Communication and Reward Membership'
06 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'mikaelgundersen' 
b'CSRF protection on OIDC login is broken'
04 Apr 2023 timeline
b'Kindred Group' disclosed a bug submitted by b'sw33tlie' 
b'[www.32red.com] Reverse proxy misconfiguration leads to 1-click account takeover'
03 Apr 2023 timeline
b'Kindred Group' disclosed a bug submitted by b'fransrosen' 
b'Full Account Takeover on *.unibet.com due to crossdomain.xml and AkamaiPlayer loaderContext'
03 Apr 2023 timeline
b'Kindred Group' disclosed a bug submitted by b'naaash' 
b'[unibet.com] Delete messages via IDOR at /mom-api/messages/unibet_@unibet/'
03 Apr 2023 timeline
b'8x8 Bounty' disclosed a bug submitted by b'bababounty99' 
b'Dangling DNS Record docs.jitsi.net (unsuccessful GSuite takeover)'
03 Apr 2023 timeline
b'Expedia Group Bug Bounty' disclosed a bug submitted by b'bombon' 
b'Cache Deception Allows Account Takeover'
01 Apr 2023 timeline
b'Expedia Group Bug Bounty' disclosed a bug submitted by b'bombon' 
b'Cache Poisoning Allows Stored XSS Via hav Cookie Parameter (To Account Takeover)'
01 Apr 2023 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'gregxsunday' 
b'[ruby]: ZipSlip/TarSlip vulnerability detection'
31 Mar 2023 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'maikypedia' 
b'[Ruby]: Server Side Template Injection'
31 Mar 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'devokta' 
b'Twitter Account hijack @nextcloudfrance'
30 Mar 2023 timeline
1 ... 77 78 79 80 81 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM