Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'MTN Group' disclosed a bug submitted by b'aliyugombe' 
b'Exposed gitlab repo at https://adammanco.mtn.com/api/v4/projects'
05 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'aliyugombe' 
b'Information disclosure through django debug mode'
05 Sep 2022 timeline
b'Semrush' disclosed a bug submitted by b'a_d_a_m' 
b'API key (api.semrush.com) leak in JS-file'
05 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'theranger' 
b'IDOR Leads To Account Takeover Without User Interaction'
04 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'a-heybati' 
b'path traversal vulnerability in Grafana 8.x allows " local file read "'
03 Sep 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'eg42' 
b'Unauthenticated SSRF in 3rd party module "cerdic/csstidy"'
03 Sep 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'nickvergessen' 
b"Brute force protections don't work"
03 Sep 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'anna_larch' 
b'Password disclosure in initial setup of Mail App'
03 Sep 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Federated share accepting/declining is not logged in audit log'
03 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'harrisoft' 
b'Weak/Auto Fill Password'
03 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'drak3hft7' 
b'Wordpress users disclosure from json and xml file'
02 Sep 2022 timeline
b'TikTok' disclosed a bug submitted by b'sinayeganeh' 
b'IDOR on TikTok Ads Endpoint'
01 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'dh0pe' 
b'Sensitive Information Disclosure Through Config File'
01 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'dh0pe' 
b'Default Admin Username and Password on remedysso.mtncameroon.net'
01 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'ibrahimatix0x01' 
b'Password reset token leak on third party website via Referer header [cloudivr.mtnbusiness.com.ng]'
01 Sep 2022 timeline
b'MTN Group' disclosed a bug submitted by b'aliyugombe' 
b'Remote code execution due to unvalidated file upload'
01 Sep 2022 timeline
b'Adobe' disclosed a bug submitted by b'aneeeketh' 
b'API Key reported in #1465145 not rotated and thus is still valid and can be used by anyone'
01 Sep 2022 timeline
b'Hyperledger' disclosed a bug submitted by b'fatal0' 
b'Remote denial of service in HyperLedger Fabric'
01 Sep 2022 timeline
b'Acronis' disclosed a bug submitted by b'mrccrqr' 
b'Any expired reset password link can still be used to reset the password'
01 Sep 2022 timeline
b'Snapchat' disclosed a bug submitted by b'mahfujwhh' 
b'Password reset tokens sent to CSP reporting endpoints'
31 Aug 2022 timeline
1 ... 94 95 96 97 98 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM