Top10 publishers:
bobrov114 
linkks73 
geeknik71 
sp1d3rs62 
jobert52 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Open-Xchange disclosed a bug submitted by secator 
Referer in /servlet/TestServlet
24 Jan 2020 timeline
Open-Xchange disclosed a bug submitted by secator 
[SSRF] PDF documentconverterws
24 Jan 2020 timeline
Open-Xchange disclosed a bug submitted by secator 
[XSS] Portal Widget Mail
24 Jan 2020 timeline
Open-Xchange disclosed a bug submitted by secator 
[XSS] content_disposition=inline in files
24 Jan 2020 timeline
Starbucks disclosed a bug submitted by moonlight323 
Norway - store.starbucks.no - CSRF on email change
23 Jan 2020 timeline
Badoo disclosed a bug submitted by oo7hacker3 
The login of Hotor Not is Vulnerable to bruteforce.
23 Jan 2020 timeline
Node.js third-party modules disclosed a bug submitted by skyn3t 
[klona] Prototype pollution
23 Jan 2020 timeline
8x8 disclosed a bug submitted by 0xelkomy 
Disclosure of Users Information On Wordpress Api [https://jitsi.org/]
23 Jan 2020 timeline
Mail.ru disclosed a bug submitted by agametov 
Boolean-based SQL Injection on relap.io
22 Jan 2020 timeline
Lyst disclosed a bug submitted by parzel 
Subdomain takeover of storybook.lystit.com
22 Jan 2020 timeline
Polymail, Inc. disclosed a bug submitted by 0xskull 
Metadata leakage via IDOR
22 Jan 2020 timeline
Mapbox disclosed a bug submitted by renekroka 
Stored XSS | api.mapbox.com | IE 11 | Styles name
21 Jan 2020 timeline
MariaDB disclosed a bug submitted by hanno 
Ubuntu/Debian installation method allows key poisoning and code execution for network attacker
21 Jan 2020 timeline
Revive Adserver disclosed a bug submitted by jacopotediosi 
Reflected XSS on www/delivery/afr.php
21 Jan 2020 timeline
GitLab disclosed a bug submitted by ooooooo_q 
Double linking cause XSS (but blokeced by CSP in gitlab.com)
20 Jan 2020 timeline
MobiSystems Ltd. disclosed a bug submitted by kickino 
open Firebase Database: msdict-dev.firebaseio.com
20 Jan 2020 timeline
NordVPN disclosed a bug submitted by nickelheck 
Open redirect
18 Jan 2020 timeline
Bumble disclosed a bug submitted by 0x3c3e 
Bruteforce password recovery code
18 Jan 2020 timeline
Vanilla disclosed a bug submitted by h1_squirtle 
Abusing "Report as abuse" functionality to delete any user's post.
18 Jan 2020 timeline
Yelp disclosed a bug submitted by md15ev 
DoS of https://blog.yelp.com/ and other WP instances via CVE-2018-6389
17 Jan 2020 timeline
1 ... 7 8 9 10 11 ... 406
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM