Top10 publishers:
bobrov117 
geeknik79 
linkks75 
sp1d3rs68 
jobert67 
someonenobbd60 
jon_bottarini49 
haxta4ok0048 
netfuzzer48 
ryat47 

the unofficial HackerOne disclosure timeline.

X
Internet Bug Bounty disclosed a bug submitted by haqpl 
Rails ActionView sanitize helper bypass leading to XSS using SVG tag.
29 Jan 2023 timeline
U.S. Dept Of Defense disclosed a bug submitted by theinternetofdefcon_ 
[U.S. Air Force] Information disclosure due unauthenticated access to APIs and system browser functions
27 Jan 2023 timeline
U.S. Dept Of Defense disclosed a bug submitted by alishah 
Reflected XSS on .mil
27 Jan 2023 timeline
U.S. Dept Of Defense disclosed a bug submitted by maskedpersian 
reflected xss in www..gov
27 Jan 2023 timeline
U.S. Dept Of Defense disclosed a bug submitted by notajax 
XSS on ( .gov ) Via URL path
27 Jan 2023 timeline
TikTok disclosed a bug submitted by mrhavit 
IDOR for changing privacy settings on any memories
27 Jan 2023 timeline
TikTok disclosed a bug submitted by s3c 
XSS at TikTok Ads Endpoint
27 Jan 2023 timeline
EXNESS disclosed a bug submitted by siddharthamx 
Verification process done using different documents without corresponding to user information / User information can be changed after verification
27 Jan 2023 timeline
8x8 disclosed a bug submitted by xdopa 
wavecell.com: Broken Link Hijacking / Instagram Takeover @
27 Jan 2023 timeline
TikTok disclosed a bug submitted by mrhavit 
Any user can vote on `Friend Only` video pull
27 Jan 2023 timeline
GitHub disclosed a bug submitted by ahacker1 
Github Apps can use Scoped-User-To-Server Tokens to Obtain Full Access to User's Projects in Project V2 GraphQL api
26 Jan 2023 timeline
Cloudflare Public Bug Bounty disclosed a bug submitted by albertspedersen 
Using special IPv4-mapped IPv6 addresses to bypass local IP ban
24 Jan 2023 timeline
Linktree disclosed a bug submitted by 0xshdax 
[song.link] Open Redirect
23 Jan 2023 timeline
Slack disclosed a bug submitted by pisarenko 
XSS on link and window.opener
23 Jan 2023 timeline
LocalTapiola disclosed a bug submitted by voiddy 
Cookie exfiltration through XSS on the main search request of www.lahitapiola.fi
19 Jan 2023 timeline
Yelp disclosed a bug submitted by rac_fckscty 
PURGE is not authenticated
19 Jan 2023 timeline
KAYAK disclosed a bug submitted by retr02332 
1 click Account takeover via deeplink in [com.kayak.android]
19 Jan 2023 timeline
HackerOne disclosed a bug submitted by reigertje 
Private information exposed through GraphQL search endpoints aggregates
19 Jan 2023 timeline
Adobe disclosed a bug submitted by dreamer_eh 
HTML INJECTION on https://adobedocs.github.io/JourneyAPI/ due to outdated SWAGGER UI
17 Jan 2023 timeline
Adobe disclosed a bug submitted by dreamer_eh 
DOM XSS at `https://adobedocs.github.io/indesign-api-docs/?configUrl={site}` due to outdated Swagger UI
17 Jan 2023 timeline
1 2 3 4 ... 644
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM