Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'TikTok' disclosed a bug submitted by b'fransrosen' 
b"TikTok's pixel/sdk.js leaks current URL from websites using postMessage"
30 Aug 2022 timeline
b'Palo Alto Software' disclosed a bug submitted by b'zer0code' 
b'weak protection against brute-forcing on login api leads to account takeover '
29 Aug 2022 timeline
b'LinkedIn' disclosed a bug submitted by b'naaash' 
b'Privilege Escalation - "Analyst" Role Can View Email Domains of a Company - [GET /voyager/api/voyagerOrganizationDashEmailDomainMappings]'
26 Aug 2022 timeline
b'GitLab' disclosed a bug submitted by b'mega7' 
b'Unauthorized access'
25 Aug 2022 timeline
b'Stripo Inc' disclosed a bug submitted by b'deb0con' 
b'Non-revoked API Key Information disclosure via Stripo_report()'
25 Aug 2022 timeline
b'MTN Group' disclosed a bug submitted by b'theranger' 
b'Default Login Credentials on https://broadbandmaps.mtn.com.gh/ '
25 Aug 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'albinowax' 
b'Pause-based desync in Apache HTTPD'
25 Aug 2022 timeline
b'Nord Security' disclosed a bug submitted by b'bashketchum' 
b'NordVPN Linux Client - Unsafe service file permissions leads to Local Privilege Escalation'
24 Aug 2022 timeline
b'Sony' disclosed a bug submitted by b'leo_rac' 
b'Reflected XSS on pages.email.sel.sony.com/page.aspx via jobid parameter'
24 Aug 2022 timeline
b'Uber' disclosed a bug submitted by b'mustafa_farrag' 
b'Golang expvar Information Disclosure'
24 Aug 2022 timeline
b'Node.js' disclosed a bug submitted by b'nagaro' 
b'Off-by-slash vulnerability in nodejs.org and iojs.org'
24 Aug 2022 timeline
b'Invision Power Services, Inc.' disclosed a bug submitted by b'fthacker101' 
b'support.invisionpower.com takeover the subdomain with Zendesk'
24 Aug 2022 timeline
b'Automattic' disclosed a bug submitted by b'sawrav-chowdhury' 
b'XSS and HTML Injection on the pressable.com search box'
23 Aug 2022 timeline
b'MTN Group' disclosed a bug submitted by b'error201' 
b'Blind SSRF External Interaction on https://mtngbissau.com/'
21 Aug 2022 timeline
b'Monero' disclosed a bug submitted by b'xfang' 
b'RPC call crashes node'
20 Aug 2022 timeline
b'TikTok' disclosed a bug submitted by b'sinayeganeh' 
b'Stored XSS on TikTok Ads'
19 Aug 2022 timeline
b'GitHub' disclosed a bug submitted by b'jupenur' 
b'Delimiter injection in GitHub Actions core.exportVariable'
18 Aug 2022 timeline
b'Hyperledger' disclosed a bug submitted by b'bhaskar_ram' 
b'Cross Site Scripting Vulnerability in fabric-sdk-py source code '
17 Aug 2022 timeline
b'TikTok' disclosed a bug submitted by b'aidilarf_2000' 
b'IDOR on TikTok Seller'
16 Aug 2022 timeline
b'TikTok' disclosed a bug submitted by b's3c' 
b'CSRF Account Takeover'
16 Aug 2022 timeline
1 ... 116 117 118 119 120 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM