Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Slack' disclosed a bug submitted by b'security_warrior' 
b'CSV export/import functionality allows administrators to modify member and message content of a workspace'
28 Sep 2022 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'albertspedersen' 
b'Take over subdomains of r2.dev using R2 custom domains'
28 Sep 2022 timeline
b'Node.js' disclosed a bug submitted by b'zeyu2001' 
b'DNS rebinding in --inspect (insufficient fix of CVE-2022-32212 affecting macOS devices)'
28 Sep 2022 timeline
b'Yelp' disclosed a bug submitted by b'raja404' 
b'Server-side request forgery (ssrf)'
28 Sep 2022 timeline
b'8x8' disclosed a bug submitted by b'rajauzairabdullah' 
b'Directory Listing vulnerability on .packet8.net/php/include/'
28 Sep 2022 timeline
b'Yelp' disclosed a bug submitted by b'qualwin3001' 
b'CORS Misconfiguration on Yelp'
28 Sep 2022 timeline
b'Yelp' disclosed a bug submitted by b'er_salil' 
b'password field autocomplete enabled'
27 Sep 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'thpless' 
b'insecure gitlab repositories at [HtUS]'
27 Sep 2022 timeline
b'Reddit' disclosed a bug submitted by b'criptex' 
b'XSS Reflected on reddit.com via url path'
27 Sep 2022 timeline
b'Adobe' disclosed a bug submitted by b'gdattacker' 
b'Main Domain Takeover at https://www.marketo.net/'
26 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'possowski' 
b'Reflected xss on videostore.mtnonline.com'
25 Sep 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'[CVE-2022-35949]: undici.request vulnerable to SSRF using absolute / protocol-relative URL on pathname '
23 Sep 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'happyhacking123' 
b'CVE-2022-35948: CRLF Injection in Nodejs undici via Content-Type'
23 Sep 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'happyhacking123' 
b'CVE-2022-38362: Apache Airflow Docker Provider <3.0 RCE vulnerability in example dag'
23 Sep 2022 timeline
b'Basecamp' disclosed a bug submitted by b'fr4via' 
b'com.basecamp.bc3 Webview Javascript Injection and JS bridge takeover'
23 Sep 2022 timeline
b'Reddit' disclosed a bug submitted by b'lu3ky-13' 
b'Open Redirect on www.redditinc.com via `failed` query param'
22 Sep 2022 timeline
b'GitLab' disclosed a bug submitted by b'joaxcar' 
b'Content injection in Jira issue title enabling sending arbitrary POST request as victim'
22 Sep 2022 timeline
b'GitLab' disclosed a bug submitted by b'joaxcar' 
b'Unauthenticated IP allowlist bypass when accessing job artifacts through gitlab pages at `{group_id}.gitlab.io`'
22 Sep 2022 timeline
b'Rocket.Chat' disclosed a bug submitted by b'gronke' 
b'getUsersOfRoom discloses users in private channels'
22 Sep 2022 timeline
b'Rocket.Chat' disclosed a bug submitted by b'mikolajczak' 
b'Rocket.chat user info security issue'
22 Sep 2022 timeline
1 ... 89 90 91 92 93 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM