Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'saltymermaid' 
b'Theme editor `oseid` parameter is leaked to third-party services through the `Referer` header which leads to somekind of storefront password bypass.'
11 Jul 2022 timeline
b'GitLab' disclosed a bug submitted by b'sateeshn' 
b'Able to view hackerone reports attachments'
11 Jul 2022 timeline
b'Stripe' disclosed a bug submitted by b'beerboy_ankit' 
b'Mass Account Takeover at https://app.taxjar.com/ - No user Interaction'
11 Jul 2022 timeline
b'Glovo' disclosed a bug submitted by b'cmuppin' 
b'Getting a free delivery by singing up from "admin_@glovoapp.com"'
11 Jul 2022 timeline
b'Glovo' disclosed a bug submitted by b'battle_angel' 
b'Server Side Template Injection on Name parameter during Sign Up process'
11 Jul 2022 timeline
b'Vanilla' disclosed a bug submitted by b'malek' 
b'Homograph attack bypass cause redirection'
10 Jul 2022 timeline
b'Radancy' disclosed a bug submitted by b'dk4trin' 
b'Blind SSRF at packagist.maximum.nl'
10 Jul 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tdp3kel9g' 
b'DoS via lua_read_body() [zhbug_httpd_94]'
09 Jul 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'ricterz' 
b'Apache HTTP Server: mod_proxy_ajp: Possible request smuggling'
09 Jul 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tdp3kel9g' 
b'Read beyond bounds via ap_rwrite() [zhbug_httpd_47.2]'
09 Jul 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tdp3kel9g' 
b'Read beyond bounds in mod_isapi.c [zhbug_httpd_41]'
09 Jul 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tdp3kel9g' 
b'Controllable read beyond bounds in lua_websocket_readbytes() [zhbug_httpd_126]'
09 Jul 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tdp3kel9g' 
b'Read beyond bounds in ap_strcmp_match() [zhbug_httpd_47.7]'
09 Jul 2022 timeline
b'Hyperledger' disclosed a bug submitted by b'dusty_wormwood' 
b'Unauthorized packages modification or secrets exfiltration via GitHub actions'
08 Jul 2022 timeline
b'Reddit' disclosed a bug submitted by b'kratul' 
b'Open Redirect through POST Request in www.redditinc.com'
08 Jul 2022 timeline
b'Glovo' disclosed a bug submitted by b'mehdisadir' 
b'Exposed valid AWS, Mysql, Sendgrid and other secrets'
08 Jul 2022 timeline
b'TikTok' disclosed a bug submitted by b'rioncool22' 
b'Clickjacking Vulnerability In Whole Page Ads Tiktok'
07 Jul 2022 timeline
b'Node.js' disclosed a bug submitted by b'zeyu2001' 
b'HTTP Request Smuggling Due to Flawed Parsing of Transfer-Encoding '
07 Jul 2022 timeline
b'Node.js' disclosed a bug submitted by b'zeyu2001' 
b'HTTP Request Smuggling Due To Improper Delimiting of Header Fields'
07 Jul 2022 timeline
b'Node.js' disclosed a bug submitted by b'zeyu2001' 
b'HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding'
07 Jul 2022 timeline
1 ... 125 126 127 128 129 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM