Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'DuckDuckGo' disclosed a bug submitted by b'webklex' 
b'com.duckduckgo.mobile.android - Cache corruption'
26 Sep 2021 timeline
b'MTN Group' disclosed a bug submitted by b'alimanshester' 
b'Reflected Cross-Site scripting in : mtn.bj'
26 Sep 2021 timeline
b'QIWI' disclosed a bug submitted by b'lalit2020' 
b'CVE-2020-3187 - unauthenticated arbitrary file deletion in Cisco'
24 Sep 2021 timeline
b'Brave Software' disclosed a bug submitted by b'bhatiagaurav1211' 
b'unclaimed s3 bucket takeover in the 3 js file located on the github page of brave software'
24 Sep 2021 timeline
b'Redtube' disclosed a bug submitted by b'kevsecurity' 
b'Deserialization of untrusted data at https://www.redtube.com/media/hls?s=data'
24 Sep 2021 timeline
b'Concrete CMS' disclosed a bug submitted by b'egix' 
b'Phar Deserialization Vulnerability via Logging Settings'
24 Sep 2021 timeline
b'curl' disclosed a bug submitted by b'monnerat' 
b'CVE-2021-22946: Protocol downgrade required TLS bypassed'
24 Sep 2021 timeline
b'curl' disclosed a bug submitted by b'monnerat' 
b'CVE-2021-22947: STARTTLS protocol injection via MITM'
24 Sep 2021 timeline
b'GitLab' disclosed a bug submitted by b'maruthi12' 
b'Guest Users can create issues for Sentry errors and track their status'
24 Sep 2021 timeline
b'LINE' disclosed a bug submitted by b'lynx_vn' 
b'DoS of LINE client for Android via message containing multiple unicode characters (0x0e & 0x0f)'
24 Sep 2021 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'[Python] CWE-522: Insecure LDAP Authentication'
23 Sep 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'End to end encryption public key is not properly verified on Desktop and Android'
23 Sep 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Clients do not verify server public key'
23 Sep 2021 timeline
b'Myndr' disclosed a bug submitted by b'azimuthub' 
b'No Rate Limit On dashboard.myndr.net/auth'
23 Sep 2021 timeline
b'Zomato' disclosed a bug submitted by b'shell_c0de' 
b'[Zomato for Business Android] Vulnerability in exported activity WebView'
23 Sep 2021 timeline
b'Zomato' disclosed a bug submitted by b'shell_c0de' 
b'[Zomato Order] Insecure deeplink leads to sensitive information disclosure'
23 Sep 2021 timeline
b'Concrete CMS' disclosed a bug submitted by b'pabl00nicarres' 
b'Fetching the update json scheme from concrete5 over HTTP leads to remote code execution'
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b"User's who are banned from program can still be invited to the new reports as collaborators"
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b'Temporary banned user (from platform) is able to make submissions via embedded submission forms'
22 Sep 2021 timeline
b'HackerOne' disclosed a bug submitted by b'muon4' 
b'CSV injection in the credentials export'
22 Sep 2021 timeline
1 ... 171 172 173 174 175 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM