Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Bitwarden' disclosed a bug submitted by b'mebeim' 
b'Biometric key is stored in Windows Credential Manager, accessible to other local unprivileged processes'
07 Jun 2023 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'albertspedersen' 
b'Cloudflare CASB Confused Deputy Problem'
07 Jun 2023 timeline
b'Mozilla Core Services' disclosed a bug submitted by b'zhero_' 
b'DOS via cache poisoning on [developer.mozilla.org]'
05 Jun 2023 timeline
b'Reddit' disclosed a bug submitted by b'mrzheev' 
b"Regression on dest parameter sanitization doesn't check scheme/websafe destinations"
03 Jun 2023 timeline
b'TikTok' disclosed a bug submitted by b'ahmedna126' 
b'IDOR in family pairing API'
02 Jun 2023 timeline
b'TikTok' disclosed a bug submitted by b'mrhavit' 
b'Reflected Cross-site Scripting (XSS) at https://www.tiktok.com/'
02 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'rektile404' 
b'Reflected xss on https://'
02 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'medokll0011' 
b'DOM-XSS'
02 Jun 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'pll25' 
b'Leaks of username and password leads to CVE-2018-18862 exploitation'
02 Jun 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'hackit_bharat' 
b'Basic auth header on WebDAV requests is not bruteforce protected'
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'mehmil' 
b'Arbitrary escape sequence injection in docker-machine from worker nodes'
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'cryptopone' 
b"Attacker is able to create,Edit & delete notes and leak the title of a victim's private personal snippet"
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'cryptopone' 
b"Attacker can create malicious child epics linked to a victim's epic in an unrelated group"
02 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'Stored XSS via Kroki diagram'
02 Jun 2023 timeline
b'HackerOne' disclosed a bug submitted by b'alone_h1' 
b'Any one can view collaborater email address via path /reports/<id>/participants '
01 Jun 2023 timeline
b'GitLab' disclosed a bug submitted by b'bull' 
b'Account takeover due to insufficient URL validation on RelayState parameter'
30 May 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'unknownsh' 
b'Blind SSRF as normal user from mailapp'
30 May 2023 timeline
b'GitLab' disclosed a bug submitted by b'mike12' 
b'Stored XSS in merge request pages'
30 May 2023 timeline
b'GitLab' disclosed a bug submitted by b'mike12' 
b'Blind SSRF in FogBugz project import'
30 May 2023 timeline
b'GitLab' disclosed a bug submitted by b'mike12' 
b'Domain Takeover - gl-canary.freetls.fastly.net'
30 May 2023 timeline
1 ... 82 83 84 85 86 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM