Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'IBM' disclosed a bug submitted by b'exploitmsf' 
b'sql injection via https://setup.p2p.ihost.com/'
17 Jun 2022 timeline
b'Enjin' disclosed a bug submitted by b'er_salil' 
b'CSRF Bypassed on Logout Endpoint'
17 Jun 2022 timeline
b'Enjin' disclosed a bug submitted by b'akashhamal0x01' 
b'Race condition via project team member invitation system.'
17 Jun 2022 timeline
b'Yelp' disclosed a bug submitted by b'happykira0x1' 
b'xmlrpc file enabled'
16 Jun 2022 timeline
b'curl' disclosed a bug submitted by b'iylz' 
b'curl "globbing" can lead to denial of service attacks'
16 Jun 2022 timeline
b'Reddit' disclosed a bug submitted by b'marvelmaniac' 
b'CSRF (protection bypassed) to force a below 18 user into viewing an nsfw subreddit !'
16 Jun 2022 timeline
b'TikTok' disclosed a bug submitted by b'aidilarf_2000' 
b'Stored XSS on TikTok Live Form'
16 Jun 2022 timeline
b'LinkedIn' disclosed a bug submitted by b'sachinrajput' 
b'Rate limit Bypass on contact-us through IP Rotator (burp extension)(https://www.linkedin.com/help/linkedin/solve/contact)'
15 Jun 2022 timeline
b'Twitter' disclosed a bug submitted by b'saiful6601' 
b'Delete direct message history without access the proper conversation_id'
15 Jun 2022 timeline
b'Twitter' disclosed a bug submitted by b'max2x' 
b"Remote 0click exfiltration of Safari user's IP address"
15 Jun 2022 timeline
b'LinkedIn' disclosed a bug submitted by b'suryasnn' 
b'The software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more su'
15 Jun 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'porcupineyhairs' 
b'Golang : Add Query To Detect PAM Authorization Bugs'
15 Jun 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'porcupineyhairs' 
b'Golang : Hardcoded secret used for signing JWT'
15 Jun 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'ihsinme' 
b'CPP: Add query for CWE-243 Creation of chroot Jail Without Changing Working Directory'
15 Jun 2022 timeline
b'UPchieve' disclosed a bug submitted by b'011alsanosi' 
b'Hyper Link Injection while signup '
15 Jun 2022 timeline
b'Acronis' disclosed a bug submitted by b'mega7' 
b'HTML Injection in E-mail'
14 Jun 2022 timeline
b'Acronis' disclosed a bug submitted by b'ub3rsick' 
b'Reflected Cross Site Scripting at ColdFusion Debugging Panel http://www.grouplogic.com/CFIDE/debug/cf_debugFr.cfm'
14 Jun 2022 timeline
b'Acronis' disclosed a bug submitted by b'ub3rsick' 
b'Reflected Cross Site Scripting at http://www.grouplogic.com/files/glidownload/verify3.asp [Uppercase Filter Bypass]'
14 Jun 2022 timeline
b'Ruby on Rails' disclosed a bug submitted by b'windshock' 
b'Rails::Html::SafeListSanitizer vulnerable to xss attack in an environment that allows the style tag'
14 Jun 2022 timeline
b'Showmax' disclosed a bug submitted by b'saidkira' 
b'lack of rate limit on athentification login page & forgot password page'
13 Jun 2022 timeline
1 ... 104 105 106 107 108 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM