Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Affirm' disclosed a bug submitted by b'xfiltrer' 
b'IDOR to view order information of users and personal information'
06 Dec 2021 timeline
b'Shopify' disclosed a bug submitted by b'jaka_tingkir' 
b'xss is triggered on your web'
06 Dec 2021 timeline
b'Shopify' disclosed a bug submitted by b'rhynorater' 
b'[h1-2102] Wholesale - CSRF to Generate Invitation Token for a Customer and Move Customer to Invited Status'
06 Dec 2021 timeline
b'Paragon Initiative Enterprises' disclosed a bug submitted by b'kashifinfo90' 
b'Recaptcha Secret key Leaked'
04 Dec 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'libio' 
b'Authenticated kubernetes principal with restricted permissions can retrieve ingress-nginx serviceaccount token and secrets across all namespaces'
04 Dec 2021 timeline
b'Shopify' disclosed a bug submitted by b'yinvi777' 
b'Staff can use BULK_OPERATIONS_FINISH webhook topic using Graphql without permissions all'
04 Dec 2021 timeline
b'TikTok' disclosed a bug submitted by b'semsem123' 
b'reflected xss on the path m.tiktok.com'
03 Dec 2021 timeline
b'TikTok' disclosed a bug submitted by b'lewaperbb' 
b'IDOR the ability to view support tickets of any user on seller platform'
03 Dec 2021 timeline
b'Shopify' disclosed a bug submitted by b'c0rv4x' 
b"[h1-2102] [Yaworski's Broskis] Suspected overcharge and chargebacks in PoS"
03 Dec 2021 timeline
b'Open-Xchange' disclosed a bug submitted by b'ihsinme' 
b'access to stack memory beyond array boundaries'
03 Dec 2021 timeline
b'ownCloud' disclosed a bug submitted by b'ihsinme' 
b'File System Monitoring Queue Overflow'
03 Dec 2021 timeline
b'Shopify' disclosed a bug submitted by b'hydraxanon82' 
b'Ability to add address without being an admin or staff in the store via wholesale store'
03 Dec 2021 timeline
b'Shopify' disclosed a bug submitted by b'j0j0' 
b'Unathorised access to admin endpoint on plus-website-staging5.shopifycloud.com'
03 Dec 2021 timeline
b'Slack' disclosed a bug submitted by b'oskarsv' 
b'Stored XSS in files.slack.com'
02 Dec 2021 timeline
b'Shopify' disclosed a bug submitted by b'cthulhufhtagn' 
b'Bypassing HTML filter in "Packing Slip Template" Lead to SSRF to Internal Kubernetes Endpoints'
02 Dec 2021 timeline
b'Glassdoor' disclosed a bug submitted by b'zonduu' 
b'CSS injection via link tag whitelisted-domain bypass - https://www.glassdoor.com'
02 Dec 2021 timeline
b'QIWI' disclosed a bug submitted by b'anonymouus' 
b'account takeover through password reset in url https://reklama.tochka.com/'
02 Dec 2021 timeline
b'Basecamp' disclosed a bug submitted by b'fuzzsqlb0f' 
b'Privilege Escalation leads to trash other users comment without having admin rights.'
01 Dec 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'c1kada' 
b'Stored XSS on https://community.my.games/ (Add Post)'
01 Dec 2021 timeline
b'Azbuka Vkusa' disclosed a bug submitted by b'haxta4ok00' 
b'Reflected XSS in photogallery component on [https://market.av.ru]'
01 Dec 2021 timeline
1 ... 170 171 172 173 174 ... 752
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM