Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Ruby on Rails' disclosed a bug submitted by b'windshock' 
b'Rails::Html::SafeListSanitizer vulnerable to xss attack in an environment that allows the style tag'
14 Jun 2022 timeline
b'Showmax' disclosed a bug submitted by b'saidkira' 
b'lack of rate limit on athentification login page & forgot password page'
13 Jun 2022 timeline
b'UPchieve' disclosed a bug submitted by b'dark_haxor' 
b'All user password hash can be seen from admin panel'
11 Jun 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'CVE-2022-30115: HSTS bypass via trailing dot'
11 Jun 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'CVE-2022-27780: percent-encoded path separator in URL host'
11 Jun 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'CVE-2022-27779: cookie for trailing dot TLD'
11 Jun 2022 timeline
b'TikTok' disclosed a bug submitted by b'datph4m' 
b'disclosure the live_analytics information of any livestream.'
11 Jun 2022 timeline
b'TikTok' disclosed a bug submitted by b'noob_but_cut3' 
b'Email address disclosure via invite token validatiion'
11 Jun 2022 timeline
b'PlayStation' disclosed a bug submitted by b'theflow0' 
b'bd-j exploit chain'
10 Jun 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'tmz900' 
b'RXSS on '
10 Jun 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'michag86' 
b'Moderator can enable cam/mic remotely if cam/mic-permission was disabled while user has activated cam/mic'
09 Jun 2022 timeline
b'curl' disclosed a bug submitted by b'ddme' 
b'Integer overflows in unescape_word()'
09 Jun 2022 timeline
b'curl' disclosed a bug submitted by b'maslahhunter' 
b'match'
09 Jun 2022 timeline
b'Reddit' disclosed a bug submitted by b'3amii' 
b'Several Subdomains Takeover'
08 Jun 2022 timeline
b'GitLab' disclosed a bug submitted by b'ooooooo_q' 
b"XSS by clicking Jira's link"
08 Jun 2022 timeline
b'GitLab' disclosed a bug submitted by b'ehhthing' 
b'Gitlab Pages token theft using service workers'
08 Jun 2022 timeline
b'GitLab' disclosed a bug submitted by b'joaxcar' 
b'"External status checks" can be accepted by users below developer access if the user is either author or assignee of the target merge request'
08 Jun 2022 timeline
b'GitLab' disclosed a bug submitted by b'jarij' 
b'Stored XSS on issue comments and other pages which contain notes'
08 Jun 2022 timeline
b'Glassdoor' disclosed a bug submitted by b'0x7' 
b'Reflected XSS on https://www.glassdoor.com/parts/header.htm'
08 Jun 2022 timeline
b'Glassdoor' disclosed a bug submitted by b'0x7' 
b'Reflected XSS on https://help.glassdoor.com/gd_requestsubmitpage'
08 Jun 2022 timeline
1 ... 105 106 107 108 109 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM