Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'curl' disclosed a bug submitted by b'monnerat' 
b'CVE-2021-22947: STARTTLS protocol injection via MITM'
24 Sep 2021 timeline
b'GitLab' disclosed a bug submitted by b'maruthi12' 
b'Guest Users can create issues for Sentry errors and track their status'
24 Sep 2021 timeline
b'LINE' disclosed a bug submitted by b'lynx_vn' 
b'DoS of LINE client for Android via message containing multiple unicode characters (0x0e & 0x0f)'
24 Sep 2021 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'[Python] CWE-522: Insecure LDAP Authentication'
23 Sep 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'End to end encryption public key is not properly verified on Desktop and Android'
23 Sep 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Clients do not verify server public key'
23 Sep 2021 timeline
b'Myndr' disclosed a bug submitted by b'azimuthub' 
b'No Rate Limit On dashboard.myndr.net/auth'
23 Sep 2021 timeline
b'Zomato' disclosed a bug submitted by b'shell_c0de' 
b'[Zomato for Business Android] Vulnerability in exported activity WebView'
23 Sep 2021 timeline
b'Zomato' disclosed a bug submitted by b'shell_c0de' 
b'[Zomato Order] Insecure deeplink leads to sensitive information disclosure'
23 Sep 2021 timeline
b'Concrete CMS' disclosed a bug submitted by b'pabl00nicarres' 
b'Fetching the update json scheme from concrete5 over HTTP leads to remote code execution'
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b"User's who are banned from program can still be invited to the new reports as collaborators"
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b'Temporary banned user (from platform) is able to make submissions via embedded submission forms'
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b'CSV injection in the credentials export'
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b'Used email confirmation link reveals the email address which is tied to it'
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b'Race condition allows to send multiple times feedback for the hacker'
22 Sep 2021 timeline
b'Engel & V\xc3\xb6lkers Technology GmbH' disclosed a bug submitted by b'chaitanya_024' 
b'HTML Injection in Email'
22 Sep 2021 timeline
b'Brave Software' disclosed a bug submitted by b'kkarfalcon' 
b'Information disclosure'
21 Sep 2021 timeline
b'Valve' disclosed a bug submitted by b'hydraskyteam' 
b"Privilege Escalation vulnerability in steam's Remote Play feature leads to arbitrary kernel-mode driver installation"
21 Sep 2021 timeline
b'Valve' disclosed a bug submitted by b'bugstar' 
b'Big Picture web browser leaks login cookies and discloses sensitive information (may lead to account takeover)'
21 Sep 2021 timeline
b'Valve' disclosed a bug submitted by b'njbooher' 
b'Access to microtransaction sales data for lots of apps from 2014 to present at /valvefinance/sanity/'
21 Sep 2021 timeline
1 ... 168 169 170 171 172 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM