Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Bykea' disclosed a bug submitted by b'sameer_ali' 
b'Lack of minimum value bid wheel verification on customer_bid in Rental Trips'
20 Nov 2025 timeline
b'Bykea' disclosed a bug submitted by b'sameer_ali' 
b'Customer can cancel a individual booking in a batch, causing locking of partner.'
20 Nov 2025 timeline
b'AWS VDP' disclosed a bug submitted by b'savannabungee' 
b'Existence of completed pods allows for bypass of Kubernetes NetworkPolicy'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'vidang04' 
b'Unrestricted setPerPage allows huge result sets / resource exhaustion / mass log retrieval'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'yoyomiski' 
b'Username normalization missing allows visually indistinguishable accounts (Whitespace-Based Impersonation)'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'vidang04' 
b'Stored-XSS in campaign name displayed in Banners modal'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'yoyomiski' 
b'Stored-XSS in Banner Name field '
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'vidang04' 
b'Reflected XSS in /admin/banner-zone.php (v6.0.0+)'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'yoyomiski' 
b'Information Disclosure via Verbose Error Messages'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'cyberjoker' 
b'IDOR Vulnerability in Banner Deletion '
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'yoyomiski' 
b'Information Disclosure via Add user lookup in Account Management (User Access)'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'cyberjoker' 
b'Stored XSS in Conversion Statistics via Tracker Name'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'lu3ky-13' 
b'Stored XSS on inventory-retrieve.php'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'lu3ky-13' 
b'Improper sanitisation of input in the settings could cause DoS'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'lu3ky-13' 
b'Reflected XSS in account-preferences-plugin.php'
19 Nov 2025 timeline
b'Revive Adserver' disclosed a bug submitted by b'yoyomiski' 
b'Authorization bypass allows changing email address of other users'
19 Nov 2025 timeline
b'curl' disclosed a bug submitted by b'xkernel' 
b'Double free in tool_ssls_load()'
18 Nov 2025 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'david96' 
b"Bypass of Cloudflare's Cache Keys and WAF via header overflow"
18 Nov 2025 timeline
b'lemlist' disclosed a bug submitted by b'0hmz' 
b'Authentication Bypass in Subscription Management Endpoint'
17 Nov 2025 timeline
b'curl' disclosed a bug submitted by b'xkernel' 
b'Double-free vulnerability in libcurl with rustls via NoServerCertVerifier condition leads to application crash'
16 Nov 2025 timeline
1 ... 8 9 10 11 12 ... 752
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM