Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Automattic' disclosed a bug submitted by b'sawrav-chowdhury' 
b'XSS and HTML Injection on the pressable.com search box'
23 Aug 2022 timeline
b'MTN Group' disclosed a bug submitted by b'error201' 
b'Blind SSRF External Interaction on https://mtngbissau.com/'
21 Aug 2022 timeline
b'Monero' disclosed a bug submitted by b'xfang' 
b'RPC call crashes node'
20 Aug 2022 timeline
b'TikTok' disclosed a bug submitted by b'sinayeganeh' 
b'Stored XSS on TikTok Ads'
19 Aug 2022 timeline
b'GitHub' disclosed a bug submitted by b'jupenur' 
b'Delimiter injection in GitHub Actions core.exportVariable'
18 Aug 2022 timeline
b'Hyperledger' disclosed a bug submitted by b'bhaskar_ram' 
b'Cross Site Scripting Vulnerability in fabric-sdk-py source code '
17 Aug 2022 timeline
b'TikTok' disclosed a bug submitted by b'aidilarf_2000' 
b'IDOR on TikTok Seller'
16 Aug 2022 timeline
b'TikTok' disclosed a bug submitted by b's3c' 
b'CSRF Account Takeover'
16 Aug 2022 timeline
b'Semrush' disclosed a bug submitted by b'a_d_a_m' 
b"IDOR allowing to read another user's token on the Social Media Ads service"
16 Aug 2022 timeline
b'Kubernetes' disclosed a bug submitted by b'amlweems' 
b'Ingress-nginx annotation injection allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces'
13 Aug 2022 timeline
b'Showmax' disclosed a bug submitted by b'miron666' 
b'Reflected XSS at https://stories.showmax.com/wp-content/themes/theme-internal_ss/blocks/ajax/a.php via `ss_country_filter` param'
12 Aug 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b's1r1u5' 
b'Disabling context isolation, nodeIntegrationInSubFrames using an unauthorised frame.'
11 Aug 2022 timeline
b'Shopify' disclosed a bug submitted by b'0x50d' 
b'Admin panel Exposure without credential at https://plus-website.shopifycloud.com/admin.php'
11 Aug 2022 timeline
b'Top Echelon Software' disclosed a bug submitted by b'hammodmt' 
b'Wordpress Users Disclosure (/wp-json/wp/v2/users/) '
11 Aug 2022 timeline
b'Hyperledger' disclosed a bug submitted by b'bhaskar_ram' 
b'fix(security):Path Traversal Bug'
11 Aug 2022 timeline
b'Top Echelon Software' disclosed a bug submitted by b'sohelahmed786' 
b'Disable xmlrpc.php file'
11 Aug 2022 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'mr_vrush' 
b'Redirection in Repeater & Intruder Tab'
11 Aug 2022 timeline
b'Hyperledger' disclosed a bug submitted by b'cet2000' 
b'many commands can be manipulated to delete identities or affiliations'
10 Aug 2022 timeline
b'Acronis' disclosed a bug submitted by b'mega7' 
b'Read-only administrator can change agent update settings'
10 Aug 2022 timeline
b'Glassdoor' disclosed a bug submitted by b'emanelyazji' 
b'[CRITICAL] Full account takeover without user interaction on sign with Apple flow'
09 Aug 2022 timeline
1 ... 108 109 110 111 112 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM