Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'EXNESS' disclosed a bug submitted by b'nearsecurity' 
b'[com.exness.android.pa Android] Universal XSS in webview. Lead to steal user cookies'
24 May 2022 timeline
b'Omise' disclosed a bug submitted by b'oblivionlight' 
b'Cross-site scripting on dashboard2.omise.co'
24 May 2022 timeline
b'Flickr' disclosed a bug submitted by b'xlord91' 
b'Open redirect bypass'
23 May 2022 timeline
b'Flickr' disclosed a bug submitted by b'keer0k' 
b'Stored XSS in photos_user_map.gne'
23 May 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'farid_hunter' 
b'[python]: Zip Slip Vulnerability'
23 May 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'[Java]: Flow sources and steps for JMS and RabbitMQ'
23 May 2022 timeline
b'Evernote' disclosed a bug submitted by b'cyberworlcload' 
b'Email Verification Bypass by bruteforcing when setting up 2FA'
22 May 2022 timeline
b'Rocket.Chat' disclosed a bug submitted by b'samuelsiv' 
b'Possible Domain Takeover on AWS Instance.'
22 May 2022 timeline
b'lemlist' disclosed a bug submitted by b'ondermedia' 
b'Clickjacking at app.lemlist.com'
20 May 2022 timeline
b'GitLab' disclosed a bug submitted by b'joaxcar' 
b'Arbitrary POST request as victim user from HTML injection in Jupyter notebooks'
20 May 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Error in Deleting Deck cards attachment reveals the full path of the website'
20 May 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'supr4s' 
b"Nextcloud Deck : Possibility for anyone to add a stack with existing tasks on anyone's board"
20 May 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'geekysherlock' 
b'Sensitive files/ data exists post deletion of user account'
20 May 2022 timeline
b'8x8' disclosed a bug submitted by b'huntinex' 
b'8x8pilot.com: Reflected XSS in Apache Tomcat /jsp-examples example directory'
19 May 2022 timeline
b'GitLab' disclosed a bug submitted by b'kannthu' 
b'Stored XSS in repository file viewer'
19 May 2022 timeline
b'Slack' disclosed a bug submitted by b'smitgharat0001' 
b'Email html Injection'
19 May 2022 timeline
b'TikTok' disclosed a bug submitted by b'cancerz' 
b'XSS and iframe injection on tiktok ads portal using redirect params'
19 May 2022 timeline
b'Stripe' disclosed a bug submitted by b'haxatron1' 
b'Bypass global deny-lists by wrapping domains using "[]" in https://github.com/stripe/smokescreen'
18 May 2022 timeline
b'Phabricator' disclosed a bug submitted by b'dyls' 
b'Conduit feed.publish API allows you to spoof other users or make it look like you have access to a restricted object'
18 May 2022 timeline
b'Glovo' disclosed a bug submitted by b'0f1c3r' 
b'Integer overflow vulnerability '
17 May 2022 timeline
1 ... 108 109 110 111 112 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM