Top10 publishers:
bobrov114 
geeknik70 
linkks69 
sp1d3rs61 
jobert50 
guido45 Twitter
bl4de41 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Shopify disclosed a bug submitted by bored-engineer 
H1514 DOM XSS on checkout.shopify.com via postMessage handler on /:id/sandbox/google_maps
04 Nov 2019 timeline
Shopify disclosed a bug submitted by teknogeek 
H1514 Ability to MiTM Shopify PoS Session to Takeover Communications
04 Nov 2019 timeline
Shopify disclosed a bug submitted by emitrani 
H1514 Get access to non public information by pivoting with graphql queries
03 Nov 2019 timeline
OLX disclosed a bug submitted by ameytakekar 
Reflected XSS on www.olx.co.id via ad_type parameter
03 Nov 2019 timeline
OLX disclosed a bug submitted by ameytakekar 
Reflected XSS on m.olx.co.id via ad_type parameter
03 Nov 2019 timeline
PuTTY (European Commission - D disclosed a bug submitted by geeknik 
puttygen: 160MB memory leak while trying to extract openssh public key from crafted key file
03 Nov 2019 timeline
PuTTY (European Commission - D disclosed a bug submitted by geeknik 
puttygen: heap-buffer-overflow in mp_get_decimal()
03 Nov 2019 timeline
PuTTY (European Commission - D disclosed a bug submitted by geeknik 
heap-use-after-free (READ of size 8) in main()
03 Nov 2019 timeline
PuTTY (European Commission - D disclosed a bug submitted by geeknik 
Assertion `len == 1' failed, process aborted while streaming ouput from remote server
03 Nov 2019 timeline
PuTTY (European Commission - D disclosed a bug submitted by geeknik 
Assertion `col >= 0 && col < line->cols' failed, process aborted while streaming ouput from remote server
03 Nov 2019 timeline
WordPress disclosed a bug submitted by geeknik 
plugins.trac.wordpress.org likely vulnerable to Cross Site Tracing (xst), TRACE HTTP method should be disabled
03 Nov 2019 timeline
Dropbox disclosed a bug submitted by geeknik 
avrecode: global-buffer-overflow in get_neighbor()
03 Nov 2019 timeline
PHP (IBB) disclosed a bug submitted by fms 
wddx_deserialize use-after-free
03 Nov 2019 timeline
New Relic disclosed a bug submitted by dangkhai 
[Bypass] Code injection to open redirect in https://insights.newrelic.com/accounts/2521182/dashboards/1026927
02 Nov 2019 timeline
New Relic disclosed a bug submitted by specialagent 
The impossibility of inclusion of the trial (BROWSER)
02 Nov 2019 timeline
Shopify disclosed a bug submitted by cablej Twitter
H1514 Stored XSS on Wholesale sales channel allows cross-organization data leakage
01 Nov 2019 timeline
SEMrush disclosed a bug submitted by dangkhai 
Code injection in https://www.semrush.com
01 Nov 2019 timeline
curl disclosed a bug submitted by b2x2r 
Active Mixed Content over HTTPS
01 Nov 2019 timeline
curl disclosed a bug submitted by b2x2r 
Insecure Frame (External)
01 Nov 2019 timeline
Twitter disclosed a bug submitted by slickrockweb 
Viral Direct Message Clickjacking via link truncation leading to capture of both Google credentials & installation of malicious 3rd party Twitter App
31 Oct 2019 timeline
1 ... 7 8 9 10 11 ... 385
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM