Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'lemlist' disclosed a bug submitted by b'ondermedia' 
b'Clickjacking at app.lemlist.com'
20 May 2022 timeline
b'GitLab' disclosed a bug submitted by b'joaxcar' 
b'Arbitrary POST request as victim user from HTML injection in Jupyter notebooks'
20 May 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'ctulhu' 
b'Error in Deleting Deck cards attachment reveals the full path of the website'
20 May 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'supr4s' 
b"Nextcloud Deck : Possibility for anyone to add a stack with existing tasks on anyone's board"
20 May 2022 timeline
b'Nextcloud' disclosed a bug submitted by b'geekysherlock' 
b'Sensitive files/ data exists post deletion of user account'
20 May 2022 timeline
b'8x8' disclosed a bug submitted by b'huntinex' 
b'8x8pilot.com: Reflected XSS in Apache Tomcat /jsp-examples example directory'
19 May 2022 timeline
b'GitLab' disclosed a bug submitted by b'kannthu' 
b'Stored XSS in repository file viewer'
19 May 2022 timeline
b'Slack' disclosed a bug submitted by b'smitgharat0001' 
b'Email html Injection'
19 May 2022 timeline
b'TikTok' disclosed a bug submitted by b'cancerz' 
b'XSS and iframe injection on tiktok ads portal using redirect params'
19 May 2022 timeline
b'Stripe' disclosed a bug submitted by b'haxatron1' 
b'Bypass global deny-lists by wrapping domains using "[]" in https://github.com/stripe/smokescreen'
18 May 2022 timeline
b'Phabricator' disclosed a bug submitted by b'dyls' 
b'Conduit feed.publish API allows you to spoof other users or make it look like you have access to a restricted object'
18 May 2022 timeline
b'Glovo' disclosed a bug submitted by b'0f1c3r' 
b'Integer overflow vulnerability '
17 May 2022 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'[app.lemlist.com] Improper handling of payment lead to bypass payment'
17 May 2022 timeline
b'TikTok' disclosed a bug submitted by b'naaash' 
b'Privilege Escalation on TikTok for Business'
16 May 2022 timeline
b'Automattic' disclosed a bug submitted by b'sawrav-chowdhury' 
b" Site information's Display Name section vulnerable for XSS attacks and HTML Injections."
16 May 2022 timeline
b'lemlist' disclosed a bug submitted by b'mr23r0' 
b'Security misconfiguration '
16 May 2022 timeline
b'curl' disclosed a bug submitted by b'sybr' 
b'CVE-2022-27781: CERTINFO never-ending busy-loop'
16 May 2022 timeline
b'Cloudflare Public Bug Bounty' disclosed a bug submitted by b'albertspedersen' 
b'HTTP Request Smuggling in Transform Rules using hexadecimal escape sequences in the concat() function'
16 May 2022 timeline
b'SMTP2GO BBP' disclosed a bug submitted by b'mrrobot2050' 
b'Origin IP found, WAF Cloudflare Bypass'
15 May 2022 timeline
b'curl' disclosed a bug submitted by b'iylz' 
b'Credential leak on redirect'
14 May 2022 timeline
1 ... 129 130 131 132 133 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM