Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'57 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'Uber' disclosed a bug submitted by b'm7mdharoun' 
b'4 Subdomains Takeover on 2 domains ( muberscolombia.com & ubereats.pl )'
29 Apr 2021 timeline
b'Uber' disclosed a bug submitted by b'0xprial' 
b'IDOR leads to leak analytics of any restaurant'
29 Apr 2021 timeline
b'Rocket.Chat' disclosed a bug submitted by b'khekhe' 
b"Hi! Security Team Rocket.Chat, It's possible to get information about the users emails without authentication"
29 Apr 2021 timeline
b'OpenMage' disclosed a bug submitted by b'prolib' 
b'Very long names on demo.openmage.org could redirect victim users to malicious url redirects via email contacts.'
29 Apr 2021 timeline
b'BlockFi' disclosed a bug submitted by b'akitech' 
b'credentials found in config file on github'
28 Apr 2021 timeline
b'Logitech' disclosed a bug submitted by b'mrmax4o4' 
b'Privilege Escalation Leads to Control The Owner Access Token Which leads to control the stream [streamlabs.com]'
27 Apr 2021 timeline
b'VK.com' disclosed a bug submitted by b'whoami991' 
b'Member still able close another user poll on communities topic'
27 Apr 2021 timeline
b'QIWI' disclosed a bug submitted by b'kalimer0x00' 
b'MobileIron Unauthenticated RCE on mdm.qiwi.com with WAF bypass'
27 Apr 2021 timeline
b'Lark Technologies' disclosed a bug submitted by b'jin0ne' 
b'SSRF with information disclosure'
27 Apr 2021 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'0b5cur17y' 
b'[i18next] Prototype pollution attack'
26 Apr 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Unexpected federated shares added via public link'
26 Apr 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Password policy changes not enforced for existing passwords'
26 Apr 2021 timeline
b'New Relic' disclosed a bug submitted by b'abhiram' 
b'Getting API access key Through Introspection query Graphql'
26 Apr 2021 timeline
b'OpenMage' disclosed a bug submitted by b'merbin' 
b'No error thrown when IDOR attempted while editing address'
26 Apr 2021 timeline
b'MTN Group' disclosed a bug submitted by b'tounsi_007' 
b'Remote OS Command Execution on Oracle Weblogic server via [CVE-2017-10271]'
25 Apr 2021 timeline
b'MTN Group' disclosed a bug submitted by b'tounsi_007' 
b'Remote OS Command Execution on Oracle Weblogic server via [CVE-2017-3506]'
25 Apr 2021 timeline
b'OpenMage' disclosed a bug submitted by b'grmx' 
b' Sharing products with Mail allows phishing attacks due to misconfiguration.'
25 Apr 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'p1006' 
b'[Plazius] SSRF Fiddler 46.148.201.206:10121'
24 Apr 2021 timeline
b'Avito' disclosed a bug submitted by b'kxyry' 
b'[avito.ru] ImageMagick uninitialized image palette'
24 Apr 2021 timeline
b'U.S. General Services Administration' disclosed a bug submitted by b'alihassam95' 
b'IDOR at training.smartpay.gsa.gov/reports/quizzes-taken-by-user'
24 Apr 2021 timeline
1 ... 182 183 184 185 186 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM