Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'curl' disclosed a bug submitted by b'rono_07' 
b'information disclosure '
07 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'nyymi' 
b'netrc crlf injection'
07 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'mdakh404' 
b'curl mishandles `%0c%0b` sequences in HTTP responses leading to CRLF confusions, Headers and Cookies Injection'
07 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'aadityaathehacker' 
b'Arbitrary File Deletion Vulnerability in curl Source Code via os.unlink()'
07 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'spongebhav' 
b'-H with space prefix leads to previous header injection when used with --proxy'
07 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'bulter' 
b'OS Command Injection (subprocess Module Usage)'
07 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'tefa_' 
b'Git repository found'
07 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'extramayoextracheeseextrafries' 
b'Integer Overflow Risk in HTTP/2 Proxy Window Size Calculations'
07 Jul 2025 timeline
b'Nintendo' disclosed a bug submitted by b'crazy_man123' 
b'[MK8DX] Improper ranking/replay file parsing'
06 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'zzq1015' 
b'TLS Cipher Misconfiguration in HTTP/3/QUIC Support'
06 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'skrcprst' 
b"CRLF injection in libcurl's SMTP client via --mail-from and --mail-rcpt allows SMTP command smuggling"
03 Jul 2025 timeline
b'Mozilla' disclosed a bug submitted by b'northsea' 
b'MozillaVPN: Elevation of Privilege via a Logic Vulnerability'
03 Jul 2025 timeline
b'Mozilla' disclosed a bug submitted by b'northsea' 
b'MozillaVPN: Elevation of Privilege via a Race Condition Vulnerability'
03 Jul 2025 timeline
b'Mozilla' disclosed a bug submitted by b'martinvw' 
b'Subdomain takeover on live.firefox.com'
03 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'stogusho' 
b"curl doesn't hide credentials in /proc/XXX/cmdline provided via CLI arguments"
03 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'justlikebono_official' 
b'Elevation of Privileges (EoP) vulnerabilities related to the some easy_options on Windows'
03 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'voggerloops' 
b'Authorization Header Leak via --location-trusted in Curl'
03 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'catenacyber' 
b'Memory leak of ftp (with proxy reuse)'
01 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'alphox' 
b'HTTP Proxy Bypass via `CURLOPT_CUSTOMREQUEST` Verb Tunneling'
01 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'evilginx1' 
b'Speculative Execution Side-Channel in `curl` '
01 Jul 2025 timeline
1 ... 9 10 11 12 13 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM