Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Basecamp' disclosed a bug submitted by b'sudi' 
b'Mutation Based Stored XSS on Trix Editor version latest (2.1.8)'
27 Jun 2025 timeline
b'curl' disclosed a bug submitted by b'grahamcampbell' 
b'Failure to strip Proxy-Authorization header on change in origin'
27 Jun 2025 timeline
b'curl' disclosed a bug submitted by b'ednaq' 
b'Arbitrary File Read via Unsanitized curl Usage Results in Sensitive File Exposure'
27 Jun 2025 timeline
b'Nintendo' disclosed a bug submitted by b'kinnay' 
b'NEX: Stack overflow in UnicodeToUtf8'
27 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'grassye' 
b'Improper Access Control Allows Trip Hijacking and Passenger/Driver PII Disclosure'
26 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'mrrhacker' 
b'Exposed trip_no in WebSocket Responses Leading to Excessive information Disclosure'
26 Jun 2025 timeline
b'Automattic' disclosed a bug submitted by b'q5ca' 
b'Woocommerce SQL Injection in WC_Report_Coupon_Usage'
24 Jun 2025 timeline
b'curl' disclosed a bug submitted by b'oxghostly' 
b'Credential leak on redirect due to improper state clearing when parsing macdef in netrc.c'
22 Jun 2025 timeline
b'curl' disclosed a bug submitted by b'z2_' 
b'Sensitive information disclosure with malicious netrc file'
22 Jun 2025 timeline
b'Informatica' disclosed a bug submitted by b'growler09' 
b'EXIF metadata not stripped from profile image'
18 Jun 2025 timeline
b'Node.js' disclosed a bug submitted by b'kenballus' 
b'Improper HTTP header block termination in llhttp'
13 Jun 2025 timeline
b'Informatica' disclosed a bug submitted by b'xbow' 
b'[20.98.103.245] Cross-Site Scripting (XSS) via /ssl-vpn/getconfig.esp at GlobalProtect VPN Portal'
13 Jun 2025 timeline
b'Rootstock Labs' disclosed a bug submitted by b'guido' 
b'Crafted smart contract can take 8 minutes to execute due to bug in modexp precompile.'
13 Jun 2025 timeline
b'Rootstock Labs' disclosed a bug submitted by b'spacewasp' 
b'DOS of RSKJ server'
13 Jun 2025 timeline
b'Lichess' disclosed a bug submitted by b'closec4ll' 
b'Improper Authentication Throttling Allows Attacker-Controlled Account Lockouts '
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'bugbountywithmarco' 
b'IDOR on in-app hardcoded zombie endpoint '
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'bugbountywithmarco' 
b'Bypassing Bronze Partner Wallet Restriction to Accept Trips with Negative Balance'
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'grassye' 
b'Ability to increase any customer offered fare (BAC)'
13 Jun 2025 timeline
b'Bykea' disclosed a bug submitted by b'back2arie' 
b'Broken Access Control (IDOR) in Booking Detail and Bids Could Leads to Sensitive Information Disclosure'
13 Jun 2025 timeline
b'Hemi VDP' disclosed a bug submitted by b'1_ali_raza' 
b'WordPress Version Exposure via /wp-links-opml.php on hemi.xyz'
13 Jun 2025 timeline
1 ... 7 8 9 10 11 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM