Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'57 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'U.S. Dept Of Defense' disclosed a bug submitted by b'mysteryengine' 
b'Read-only path traversal (CVE-2020-3452) at https://.mil'
02 Apr 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'chron0x_' 
b'Reflected XSS on '
02 Apr 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'sml555' 
b'KOPS documentation references domains which were not registered'
02 Apr 2021 timeline
b'Clario' disclosed a bug submitted by b'br33z3' 
b'Google API key leaks and security misconfiguration leads Open Redirect Vulnerability'
01 Apr 2021 timeline
b'HackerOne' disclosed a bug submitted by b'updatelap' 
b'HackerOne Jira integration plugin Leaked JWT to unauthorized jira users'
01 Apr 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'bradgeesaman' 
b'API Server DoS (crash?) if many large resources (~1MB each) are concurrently/repeatedly sent to an external Validating WebHook endpoint'
01 Apr 2021 timeline
b'Kubernetes' disclosed a bug submitted by b'danielsagi' 
b'Kubelet follows symlinks as root in /var/log from the /logs server endpoint '
01 Apr 2021 timeline
b'Rockstar Games' disclosed a bug submitted by b'netfuzzer' 
b'SocialClub Account Take Over Through Import Friends feature'
01 Apr 2021 timeline
b'Moneybird' disclosed a bug submitted by b'bugera' 
b'Access control issue on invoice documents downloading feature.'
01 Apr 2021 timeline
b'Kaspersky' disclosed a bug submitted by b'theevilbit' 
b'KIS for macOS is vulnerable to AV bypass due to improper client authorization on XPC service'
01 Apr 2021 timeline
b'Courier' disclosed a bug submitted by b'everybodyhurts' 
b'[OPEN S3 BUCKET] All uploaded files are public. '
01 Apr 2021 timeline
b'Khan Academy' disclosed a bug submitted by b'4z1zu' 
b"Khan Academy ClickJacking to Steal Users's Credintials"
31 Mar 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'supr4s' 
b'HTML Injection on "polls" app - comments section (possibly XSS)'
31 Mar 2021 timeline
b'Kaspersky' disclosed a bug submitted by b'abbadeed' 
b'A vulnerability in KAVKIS 2020 products family allows full disabling of protection'
31 Mar 2021 timeline
b'Rocket.Chat' disclosed a bug submitted by b'sectex' 
b'Account takeover via XSS'
31 Mar 2021 timeline
b'QIWI' disclosed a bug submitted by b'okradze' 
b'crlf injection https://bug.qiwi.com'
31 Mar 2021 timeline
b'QIWI' disclosed a bug submitted by b'okradze' 
b'mysql.initial.sql file is accessable for everyone'
31 Mar 2021 timeline
b'pixiv' disclosed a bug submitted by b'noxx' 
b'Reset any password'
31 Mar 2021 timeline
b'Hyperledger' disclosed a bug submitted by b'swang1994' 
b'Vulnerability in Private Data Endorsement Policy Management in Hyperledger Fabric 2.0'
30 Mar 2021 timeline
b'Hyperledger' disclosed a bug submitted by b'swang1994' 
b'The payload Field of Transactions in a Block Reveals the Private Data to All Peers '
30 Mar 2021 timeline
1 ... 188 189 190 191 192 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM