Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'beastglatisant' 
b'[https://shipit-sox-staging.shopifycloud.com] Presence of multiple vulnerabilities present in Ruby On Rails'
16 Apr 2022 timeline
b'U.S. General Services Administration' disclosed a bug submitted by b'hollaatm3' 
b'Account takeover leading to PII chained with stored XSS'
16 Apr 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tdp3kel9g' 
b'Read and write beyond bounds in mod_sed'
14 Apr 2022 timeline
b'HackerOne' disclosed a bug submitted by b'0619' 
b'[Bypass] Ability to invite a new member in sandbox Organization '
14 Apr 2022 timeline
b'TikTok' disclosed a bug submitted by b'homosec' 
b'Reflected XSS on TikTok Website'
13 Apr 2022 timeline
b'GitHub' disclosed a bug submitted by b'bitquark' 
b'CSRF protection bypass in GitHub Enterprise management console'
13 Apr 2022 timeline
b'Automattic' disclosed a bug submitted by b'superpan' 
b'Stored XSS on the "www.intensedebate.com/extras-widgets" url at "Recent comments by" module with malicious blog url'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'holyfield' 
b'Improper Implementation of SDK Allows Universal XSS in Webview Leading to Account Takeover'
13 Apr 2022 timeline
b'Shopify' disclosed a bug submitted by b'saltymermaid' 
b'Ability to connect an external login service for unverified emails/accounts at accounts.shopify.com'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'socialcodia' 
b'CRLF Injection - Http Response Splitting '
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Acess control vulnerability (read/write)'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Access control vulnerability (read/write)'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Access control vulnerability (read-only)'
13 Apr 2022 timeline
b'EXNESS' disclosed a bug submitted by b'a_ashwarya' 
b'Taking position in a discontinued forex pair without executing any trades'
13 Apr 2022 timeline
b'Omise' disclosed a bug submitted by b'ravansurya' 
b'Open S3 Bucket Accessible by any User'
13 Apr 2022 timeline
b'Reddit' disclosed a bug submitted by b'dingleberryfarts' 
b'Regular Expression Denial of Service vulnerability'
12 Apr 2022 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'RCE via WikiCloth markdown rendering if the `rubyluabridge` gem is installed'
12 Apr 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'[Python]: Add Server-side Request Forgery sinks'
11 Apr 2022 timeline
b'MTN Group' disclosed a bug submitted by b'muhnad' 
b'Insecure Storage of Sensitive Information on lonestarcell.com server'
09 Apr 2022 timeline
b'SecurityScorecard' disclosed a bug submitted by b'cryptoknight028' 
b'HTML injection through Invite Teammate email'
09 Apr 2022 timeline
1 ... 149 150 151 152 153 ... 752
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM