Top10 publishers:
bobrov117 
geeknik79 
linkks75 
sp1d3rs68 
jobert64 
someonenobbd60 
jon_bottarini49 
netfuzzer48 
haxta4ok0048 
ryat47 

the unofficial HackerOne disclosure timeline.

X
LinkedIn disclosed a bug submitted by suryasnn 
The software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more su
15 Jun 2022 timeline
GitHub Security Lab disclosed a bug submitted by porcupineyhairs 
Golang : Add Query To Detect PAM Authorization Bugs
15 Jun 2022 timeline
GitHub Security Lab disclosed a bug submitted by porcupineyhairs 
Golang : Hardcoded secret used for signing JWT
15 Jun 2022 timeline
GitHub Security Lab disclosed a bug submitted by ihsinme 
CPP: Add query for CWE-243 Creation of chroot Jail Without Changing Working Directory
15 Jun 2022 timeline
UPchieve disclosed a bug submitted by 011alsanosi 
Hyper Link Injection while signup
15 Jun 2022 timeline
Acronis disclosed a bug submitted by mega7 
HTML Injection in E-mail
14 Jun 2022 timeline
Acronis disclosed a bug submitted by ub3rsick 
Reflected Cross Site Scripting at ColdFusion Debugging Panel http://www.grouplogic.com/CFIDE/debug/cf_debugFr.cfm
14 Jun 2022 timeline
Acronis disclosed a bug submitted by ub3rsick 
Reflected Cross Site Scripting at http://www.grouplogic.com/files/glidownload/verify3.asp [Uppercase Filter Bypass]
14 Jun 2022 timeline
Ruby on Rails disclosed a bug submitted by windshock 
Rails::Html::SafeListSanitizer vulnerable to xss attack in an environment that allows the style tag
14 Jun 2022 timeline
Showmax disclosed a bug submitted by saidkira 
lack of rate limit on athentification login page & forgot password page
13 Jun 2022 timeline
UPchieve disclosed a bug submitted by dark_haxor 
All user password hash can be seen from admin panel
11 Jun 2022 timeline
Internet Bug Bounty disclosed a bug submitted by haxatron1 
CVE-2022-30115: HSTS bypass via trailing dot
11 Jun 2022 timeline
Internet Bug Bounty disclosed a bug submitted by haxatron1 
CVE-2022-27780: percent-encoded path separator in URL host
11 Jun 2022 timeline
Internet Bug Bounty disclosed a bug submitted by haxatron1 
CVE-2022-27779: cookie for trailing dot TLD
11 Jun 2022 timeline
TikTok disclosed a bug submitted by datph4m 
disclosure the live_analytics information of any livestream.
11 Jun 2022 timeline
TikTok disclosed a bug submitted by noob_but_cut3 
Email address disclosure via invite token validatiion
11 Jun 2022 timeline
PlayStation disclosed a bug submitted by theflow0 
bd-j exploit chain
10 Jun 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by tmz900 
RXSS on
10 Jun 2022 timeline
Nextcloud disclosed a bug submitted by michag86 
Moderator can enable cam/mic remotely if cam/mic-permission was disabled while user has activated cam/mic
09 Jun 2022 timeline
curl disclosed a bug submitted by ddme 
Integer overflows in unescape_word()
09 Jun 2022 timeline
1 2 3 4 ... 613
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM