Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'HackerOne' disclosed a bug submitted by b'refaat01' 
b'adding h1_analyst_* to username for normal users '
12 Apr 2023 timeline
b'Brave Software' disclosed a bug submitted by b'mrzheev' 
b'UXss on brave browser via scan QR Code'
11 Apr 2023 timeline
b'Expedia Group Bug Bounty' disclosed a bug submitted by b'exploitmsf' 
b'Sensitive information for phpinfo.php at https://products.ean.com/'
11 Apr 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'anandpingsafe' 
b"Can delete other user's post and company page post"
11 Apr 2023 timeline
b'Weblate' disclosed a bug submitted by b'triplesided' 
b'Testing flow includes a DeepSource secret'
11 Apr 2023 timeline
b'U.S. Department of State' disclosed a bug submitted by b'nepalihacker0x01' 
b'IDOR in TalentMAP API can be abused to enumerate personal information of all the users'
11 Apr 2023 timeline
b'MetaMask' disclosed a bug submitted by b'ronnyx2017' 
b'Bypass parsing of transaction data, users on the phishing site will transfer/approve ERC20 tokens without being alerted'
10 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Ability to control the filename when uploading a logo or favicon on theming'
10 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Full Passcode bypass on Nextcloud App iOS'
10 Apr 2023 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'ostracize' 
b'Session mismatch leading to potential account takeover (local access required)'
10 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'mdfarhanchowdhuryhasin' 
b'Website PHP source code returned in javascript'
10 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ht0k' 
b'Security Unfavorable Specifications and Implementations in the CGI::Cookie Class'
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ht0k' 
b"Ruby's CGI library has HTTP response splitting (HTTP header injection), leaking confidential information"
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'bn00rdhuis' 
b'Use of Cryptographically Weak Pseudo-Random Number Generator in WebCrypto keygen'
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'mhdawson_' 
b'Inadequate Encryption Strength in nodejs-current reads openssl.cnf from /home/iojs/build/... upon startup on MacOS'
09 Apr 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'vwx7' 
b'HTTP Request Smuggling Due to Incorrect Parsing of Header Fields'
09 Apr 2023 timeline
b'Elastic' disclosed a bug submitted by b'dee-see' 
b'Synthetics Recorder: Code injection when recording website with malicious content'
08 Apr 2023 timeline
b'ResMed' disclosed a bug submitted by b'pranav-pranayx01' 
b'[shop.resmed.com]CSRF leads to Unsubscribe victim from Communication and Reward Membership'
06 Apr 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'mikaelgundersen' 
b'CSRF protection on OIDC login is broken'
04 Apr 2023 timeline
b'Kindred Group' disclosed a bug submitted by b'sw33tlie' 
b'[www.32red.com] Reverse proxy misconfiguration leads to 1-click account takeover'
03 Apr 2023 timeline
1 ... 89 90 91 92 93 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM