Top10 publishers:
bobrov116 
linkks75 
geeknik73 
sp1d3rs63 
jobert60 
jon_bottarini48 
netfuzzer47 
ryat47 
guido45 Twitter
skavans42 

the unofficial HackerOne disclosure timeline.

X
Mail.ru disclosed a bug submitted by chaosbolt 
[ICQ] nwwwstg-d01.ops.icq.com check mk agent exposed to public
02 Dec 2020 timeline
Mail.ru disclosed a bug submitted by ub1k 
Users information leak at sbermarket.ru
01 Dec 2020 timeline
Mail.ru disclosed a bug submitted by 0x01alka 
/sql http://mx36.ucs.ru/ reflected XSS.
01 Dec 2020 timeline
Showmax disclosed a bug submitted by logicalh4x0r 
WordPress admin is accessible without HTTP authentication
01 Dec 2020 timeline
GitLab disclosed a bug submitted by yvvdwf 
Store-XSS in error message of build-dependencies
01 Dec 2020 timeline
GitLab disclosed a bug submitted by ngalog 
[Admin Panel] CSRF to resume/pause runner
01 Dec 2020 timeline
Affirm disclosed a bug submitted by yogesh_ojha 
Absence of Token expiry leads to Unauthorized login Access
01 Dec 2020 timeline
GitLab disclosed a bug submitted by vaib25vicky 
Unauthorized user is able to access schedule pipeline variables and values
30 Nov 2020 timeline
Snapchat disclosed a bug submitted by nahamsec Twitter
Server-Side Request Forgery using Javascript allows to exfill data from Google Metadata
30 Nov 2020 timeline
BugPoC disclosed a bug submitted by whitehat1443hacker 
Strict Transport Security Misconfiguration
30 Nov 2020 timeline
Stripo Inc disclosed a bug submitted by kittytrace 
No rate limiting for subscribe email + lead to Cross origin misconfiguration
30 Nov 2020 timeline
Kubernetes disclosed a bug submitted by todayisnew 
Subdomain Takeover Via via Dangling NS records on Amazon Route 53 http://api.e2e-kops-aws-canary.test-cncf-aws.canary.k8s.io
29 Nov 2020 timeline
Kubernetes disclosed a bug submitted by derek0405 
secret leaks in vsphere cloud controller manager log
29 Nov 2020 timeline
Kubernetes disclosed a bug submitted by purelyapplied 
CVE-2019-11250 remains in effect.
29 Nov 2020 timeline
Node.js third-party modules disclosed a bug submitted by bilk0h 
[last-commit-log] Command Injection
29 Nov 2020 timeline
Automattic disclosed a bug submitted by fuzzme 
[api.tumblr.com] Denial of Service by cookies manipulation
29 Nov 2020 timeline
Helium disclosed a bug submitted by eissen5c 
Race Condition of Transfer data Credits to Organization Leads to Add Extra free Data Credits to the Organization
27 Nov 2020 timeline
Open-Xchange disclosed a bug submitted by skr0x1c0 
XSS on opening malicious OpenOffice presentation document
27 Nov 2020 timeline
Open-Xchange disclosed a bug submitted by skr0x1c0 
SSRF protection bypass in /appsuite/api/oxodocumentfilter addfile action
27 Nov 2020 timeline
Shopify disclosed a bug submitted by ash_nz 
Low Privileged Staff Member Can Export Billing Charges
26 Nov 2020 timeline
1 2 3 4 ... 490
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM