Top10 publishers:
bobrov117 
linkks75 
geeknik75 
sp1d3rs66 
jobert60 
jon_bottarini48 
ryat47 
netfuzzer47 
guido45 Twitter
bl4de42 

the unofficial HackerOne disclosure timeline.

X
Legal Robot disclosed a bug submitted by todayisnew 
AWS hosting bucket for Legal Robots set as public browse and list contents: s3://legalrobot
24 Feb 2021 timeline
Grab disclosed a bug submitted by todayisnew 
Subdomain Takeover Via Insecure CloudFront Distribution cdn.grab.com
24 Feb 2021 timeline
Uber disclosed a bug submitted by alexbirsan 
RCE via npm misconfig -- installing internal libraries from the public registry
24 Feb 2021 timeline
Uber disclosed a bug submitted by orange 
Pre-auth Remote Code Execution on multiple Uber SSL VPN servers
24 Feb 2021 timeline
Uber disclosed a bug submitted by m4k 
Cookie Bombing cause DOS - businesses.uber.com
24 Feb 2021 timeline
Uber disclosed a bug submitted by gamer7112 
Reflected XSS on https://www.uber.com
24 Feb 2021 timeline
Uber disclosed a bug submitted by molejarka 
[experience.uber.com] Node.js source code disclosure & anonymous access to internal Uber documents, templates and tools
23 Feb 2021 timeline
Uber disclosed a bug submitted by cablej Twitter
[manage.jumpbikes.com] Blind XSS on Jump admin panel via user name
23 Feb 2021 timeline
Rockstar Games disclosed a bug submitted by bugstar 
RDR2 game service method allows adding any player to a new Posse without consent
23 Feb 2021 timeline
Node.js disclosed a bug submitted by v6ak 
DNS rebinding in --inspect (insufficient fix of CVE-2018-7160)
23 Feb 2021 timeline
Acronis disclosed a bug submitted by theevilbit 
Acronis True Image Local Privilege Escalation via insecure folder permissions
23 Feb 2021 timeline
Acronis disclosed a bug submitted by theevilbit 
True Image 2021 - LPE via XPC service communication
23 Feb 2021 timeline
Lark Technologies disclosed a bug submitted by imran_nisar 
Stored XSS in Satisfaction Surveys via "Ask Reason for Dissatisfaction" option
23 Feb 2021 timeline
Valve disclosed a bug submitted by fe7ch 
[CS 1.6] Map cycle abuse allows arbitrary file read/write
22 Feb 2021 timeline
Keybase disclosed a bug submitted by johnjhacking 
Keybase /AppData/Local/Keybase/uploadtemps folder stores pasted photos
22 Feb 2021 timeline
Zomato disclosed a bug submitted by hoteyes 
SQL Injection in www.hyperpure.com
22 Feb 2021 timeline
Basecamp disclosed a bug submitted by aisforarray 
DNS Setup allows sending mail on behalf of other customers
21 Feb 2021 timeline
Mail.ru disclosed a bug submitted by n19ht-d3v1l 
subdomain Takeover
21 Feb 2021 timeline
Mail.ru disclosed a bug submitted by n19ht-d3v1l 
Subdomain Takeover
21 Feb 2021 timeline
Mail.ru disclosed a bug submitted by schutzx0r 
CSRF in updating username https://pw.mail.ru/
21 Feb 2021 timeline
1 2 3 4 ... 519
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM