Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'ramsexy' 
b'[h1-2102] Improper Access Control at https://shopify.plus/[id]/users/api in operation UpdateOrganizationUserRole'
21 Apr 2022 timeline
b'Shopify' disclosed a bug submitted by b'4bel' 
b'Same the Url'
21 Apr 2022 timeline
b'curl' disclosed a bug submitted by b'medianmedianstride' 
b"curl proceeds with unsafe connections when -K file can't be read"
21 Apr 2022 timeline
b'Zivver' disclosed a bug submitted by b'martinvw' 
b'Timing difference exposes existence of accounts'
21 Apr 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'whoisbinit' 
b'Open Akamai ARL XSS at '
20 Apr 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'takester' 
b'Full account takeover in due lack of rate limiting in forgot password'
20 Apr 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'null_bytes' 
b' vulnerable to CVE-2022-22954'
20 Apr 2022 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'shirshak' 
b'CORS Misconfiguration'
20 Apr 2022 timeline
b'Evernote' disclosed a bug submitted by b'sarka' 
b'Reflected XSS in the shared note view on https://evernote.com'
20 Apr 2022 timeline
b'Mattermost' disclosed a bug submitted by b'mr_anksec' 
b'Invitation Email is resent as a Reminder after invalidating pending email invites'
19 Apr 2022 timeline
b'MTN Group' disclosed a bug submitted by b'pisarenko' 
b'xss on [developers.mtn.com]'
19 Apr 2022 timeline
b'HackerOne' disclosed a bug submitted by b'ahacker1' 
b'An attacker can archive and unarchive any structured scope object on HackerOne'
18 Apr 2022 timeline
b'LINE' disclosed a bug submitted by b'jafarakhondali' 
b'SSRF occurrence in website preview used by LINE Official Account Manager (https://manager.line.biz)'
18 Apr 2022 timeline
b'LINE' disclosed a bug submitted by b'tosun' 
b"Deleting someone else's profile image with a GraphQL query in programming education service (https://entry.line.me)"
18 Apr 2022 timeline
b'LINE' disclosed a bug submitted by b'tosun' 
b'Use of unreleased features in programming education service (https://entry.line.me)'
18 Apr 2022 timeline
b'LINE' disclosed a bug submitted by b'duahaubadao' 
b'SSRF restricted to HTTP/HTML on LINE Social Plugins (https://social-plugins.line.me/)'
18 Apr 2022 timeline
b'Shopify' disclosed a bug submitted by b'beastglatisant' 
b'[https://shipit-sox-staging.shopifycloud.com] Presence of multiple vulnerabilities present in Ruby On Rails'
16 Apr 2022 timeline
b'U.S. General Services Administration' disclosed a bug submitted by b'hollaatm3' 
b'Account takeover leading to PII chained with stored XSS'
16 Apr 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tdp3kel9g' 
b'Read and write beyond bounds in mod_sed'
14 Apr 2022 timeline
b'HackerOne' disclosed a bug submitted by b'0619' 
b'[Bypass] Ability to invite a new member in sandbox Organization '
14 Apr 2022 timeline
1 ... 155 156 157 158 159 ... 759
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM