Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Alohi' disclosed a bug submitted by b'zeesozee' 
b'Weak rate limit for SIGN.PLUS email verification'
21 Jun 2022 timeline
b'Krisp' disclosed a bug submitted by b'yassineaboukir' 
b'Authentication CSRF resulting in unauthorized account access on Krisp app'
20 Jun 2022 timeline
b'Krisp' disclosed a bug submitted by b'life__001' 
b'Add more seats by paying less via PUT /v2/seats request manipulation'
20 Jun 2022 timeline
b'UPS VDP' disclosed a bug submitted by b'7odamo' 
b'Admin Authentication Bypass Lead to Admin Account Takeover '
20 Jun 2022 timeline
b'Enjin' disclosed a bug submitted by b'whiteshadow201' 
b'Authentication token and CSRF token bypass'
19 Jun 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'michag86' 
b'bypass forced password protection via circles app'
19 Jun 2022 timeline
b'UPS VDP' disclosed a bug submitted by b'nayefhamouda' 
b'Broken access control '
18 Jun 2022 timeline
b'IBM' disclosed a bug submitted by b'exploitmsf' 
b'sql injection via https://setup.p2p.ihost.com/'
17 Jun 2022 timeline
b'Enjin' disclosed a bug submitted by b'er_salil' 
b'CSRF Bypassed on Logout Endpoint'
17 Jun 2022 timeline
b'Enjin' disclosed a bug submitted by b'akashhamal0x01' 
b'Race condition via project team member invitation system.'
17 Jun 2022 timeline
b'Yelp' disclosed a bug submitted by b'happykira0x1' 
b'xmlrpc file enabled'
16 Jun 2022 timeline
b'curl' disclosed a bug submitted by b'iylz' 
b'curl "globbing" can lead to denial of service attacks'
16 Jun 2022 timeline
b'Reddit' disclosed a bug submitted by b'marvelmaniac' 
b'CSRF (protection bypassed) to force a below 18 user into viewing an nsfw subreddit !'
16 Jun 2022 timeline
b'TikTok' disclosed a bug submitted by b'aidilarf_2000' 
b'Stored XSS on TikTok Live Form'
16 Jun 2022 timeline
b'LinkedIn' disclosed a bug submitted by b'sachinrajput' 
b'Rate limit Bypass on contact-us through IP Rotator (burp extension)(https://www.linkedin.com/help/linkedin/solve/contact)'
15 Jun 2022 timeline
b'Twitter' disclosed a bug submitted by b'saiful6601' 
b'Delete direct message history without access the proper conversation_id'
15 Jun 2022 timeline
b'Twitter' disclosed a bug submitted by b'max2x' 
b"Remote 0click exfiltration of Safari user's IP address"
15 Jun 2022 timeline
b'LinkedIn' disclosed a bug submitted by b'suryasnn' 
b'The software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more su'
15 Jun 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'porcupineyhairs' 
b'Golang : Add Query To Detect PAM Authorization Bugs'
15 Jun 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'porcupineyhairs' 
b'Golang : Hardcoded secret used for signing JWT'
15 Jun 2022 timeline
1 ... 116 117 118 119 120 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM