Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'57 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'GitLab' disclosed a bug submitted by b'maruthi12' 
b'Reporters can upload design to issues using the "Move to" feature'
18 Oct 2021 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'Stored XSS in markdown via the DesignReferenceFilter '
18 Oct 2021 timeline
b'Concrete CMS' disclosed a bug submitted by b'd3addog' 
b'Stored unauth XSS in calendar event via CSRF'
15 Oct 2021 timeline
b'Concrete CMS' disclosed a bug submitted by b'd3addog' 
b'Authenticated path traversal to RCE'
15 Oct 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'mrempy' 
b'DoD internal documents are leaked to the public'
15 Oct 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'fdeleite' 
b'Subdomain takeover []'
13 Oct 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'brumens' 
b'Cache Posioning leading to denial of service at `` - Bypass fix from report #1198434\t'
13 Oct 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nagli' 
b'POST based RXSS on https:/// via parameter'
13 Oct 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'letfornz' 
b'Path traversal on []'
13 Oct 2021 timeline
b'WakaTime' disclosed a bug submitted by b'mr_n0b3dy' 
b'HTML - injection '
12 Oct 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'melbadry9' 
b'Open Redirect and CRLF Injection Leads to XSS on [app.doma.uchi.ru]'
12 Oct 2021 timeline
b'Acronis' disclosed a bug submitted by b'doosec101' 
b'Subdomain takeover of main domain of https://www.cyberlynx.lu/'
12 Oct 2021 timeline
b'Monero' disclosed a bug submitted by b'minerscan' 
b'Array Index Underflow--http rpc'
11 Oct 2021 timeline
b'Rocket.Chat' disclosed a bug submitted by b'wreiske' 
b'Custom crafted message object in Meteor.Call allows remote code execution and impersonation'
11 Oct 2021 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'[Java] CWE-200: Query to detect exposure of sensitive information from android file intent'
11 Oct 2021 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'[Python] CWE-348: Client supplied ip used in security check'
11 Oct 2021 timeline
b'Fastify' disclosed a bug submitted by b'drstrnegth' 
b"1-click DOS in fastify-static via directly passing user's input to new URL() of NodeJS without try/catch"
11 Oct 2021 timeline
b'Fastify' disclosed a bug submitted by b'drstrnegth' 
b"Open redirect in fastify-static via mishandled user's input when attempt to redirect"
11 Oct 2021 timeline
b'GitLab' disclosed a bug submitted by b'joaxcar' 
b'Privilege escalation of "external user" (with maintainer privilege) to internal access through project token'
11 Oct 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'melbadry9' 
b'CVE-2020-11110: Grafana Unauthenticated Stored XSS - grafana-lms.rsv.bizml.ru'
11 Oct 2021 timeline
1 ... 145 146 147 148 149 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM