Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Session fixation on public talk links'
16 Jun 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Serverinfo endpoints are not bruteforce protected nor are tokens properly generated'
16 Jun 2021 timeline
b'Sifchain' disclosed a bug submitted by b'g4urav_19' 
b'Error Page Content Spoofing or Text Injection'
15 Jun 2021 timeline
b'UPchieve' disclosed a bug submitted by b'shivanshmalik2' 
b'Clickjacking on profile page leading to unauthorized changes'
15 Jun 2021 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'kq8dq' 
b'Denial of service via cache poisoning on https://www.data.gov/'
15 Jun 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sazouki' 
b'Reflected XSS through ClickJacking'
15 Jun 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'fiveguyslover' 
b'XML Injection / External Service Interaction (HTTP/DNS) On https://.mil'
15 Jun 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'the_boschko' 
b'Default Admin Username and Password on Server at mil'
15 Jun 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'fdeleite' 
b'Elmah.axd is publicly accessible leaking Error Log'
15 Jun 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Default Nextcloud Server and Android Client leak sharee searches to Nextcloud'
15 Jun 2021 timeline
b'Ruby on Rails' disclosed a bug submitted by b'ooooooo_q' 
b'XSS by MathML at Active Storage'
15 Jun 2021 timeline
b'Ruby on Rails' disclosed a bug submitted by b'komang4130' 
b'HTTP Host injection in redirect_to function'
15 Jun 2021 timeline
b'Ruby on Rails' disclosed a bug submitted by b'ooooooo_q' 
b'Regex Injection from request header (Rack::Sendfile, send_file)'
15 Jun 2021 timeline
b'UPchieve' disclosed a bug submitted by b'n1had' 
b'Cross-origin resource sharing misconfig | steal user information '
15 Jun 2021 timeline
b'Node.js' disclosed a bug submitted by b'sickcodes' 
b'Unexpected input validation of octal literals in nodejs v15.12.0 and below returns defined values for all undefined octal literals.'
14 Jun 2021 timeline
b'MTN Group' disclosed a bug submitted by b'tandav' 
b'XMLRPC, Enabling XPSA and Bruteforce and DOS + A file disclosing installer-logs.'
14 Jun 2021 timeline
b'Sifchain' disclosed a bug submitted by b'ibrahimauwal1' 
b'Wrong implementation of Telegram link on the main page for PC users'
12 Jun 2021 timeline
b'Sifchain' disclosed a bug submitted by b'beebeek' 
b'Flaws In Social media Icon on error page which can lead to financial loss to a company.'
12 Jun 2021 timeline
b'HackerOne' disclosed a bug submitted by b'hacker_ani3s' 
b'Hackerone is not properly deleting user id'
11 Jun 2021 timeline
b'Acronis' disclosed a bug submitted by b'mmg' 
b'SQL injection in https://www.acronis.cz/ via the log parameter'
11 Jun 2021 timeline
1 ... 183 184 185 186 187 ... 731
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM