Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'57 
b'ooooooo_q'50 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Dropbox' disclosed a bug submitted by b'h4x0r_dz' 
b'User has Sender permission can Get Team information '
26 Feb 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'alexeysergeevich' 
b'capsula.mail.ru - reflected xss'
26 Feb 2021 timeline
b'Lark Technologies' disclosed a bug submitted by b'imran_nisar' 
b'Stealing app credentials by reflected xss on Lark Suite'
26 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'apolo2' 
b'Thumbor misconfiguration at blogapi.uber.com can lead to DoS'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'mariogomez1' 
b'stack trace exposed on https://receipts.uber.com/'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'corb3nik' 
b'[First 30] Stored XSS on login.uber.com/oauth/v2/authorize via redirect_uri parameter'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'corb3nik' 
b'Stored XSS on auth.uber.com/oauth/v2/authorize via redirect_uri parameter leads to Account Takeover'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'healdb' 
b'Outdated Wordpress installation and plugins at www.uberxgermany.com create CSRF and XSS vulnerabilities'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'tomnomnom' 
b'[Pre-Submission][H1-4420-2019] API access to Phabricator on code.uberinternal.com from leaked certificate in git repo'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'fawazxq' 
b'Disclosure of Co-Rider user (Uber-pooling) profile picture at Amazon AWS Cloudfront within HTTP RESPONSE '
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'phwd' 
b'Listing of email addresses of whitelisted business users visible at business.uber.com'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'rijalrojan' 
b'Uber employees are sharing information on productforums.google.com'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'0xd0m7' 
b'[usuppliers.uber.com] - Server Side Request Forgery via XXE OOB'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'orange' 
b'Arbitrary File Reading on Uber SSL VPN'
25 Feb 2021 timeline
b'Weblate' disclosed a bug submitted by b'anotherhoax' 
b'Race Condition allows to get more free trials and get more than 100 languages and strings for free'
25 Feb 2021 timeline
b'CS Money' disclosed a bug submitted by b'gatolouco' 
b'Cookie poisoning leads to DOS and Privacy Violation'
25 Feb 2021 timeline
b'Dropbox' disclosed a bug submitted by b'cybxis' 
b"`account_info.read` scope OAuth app access token can change token owner's account name."
25 Feb 2021 timeline
b'Automattic' disclosed a bug submitted by b'telaviv_h4x0r' 
b'information disclosure lead to disclose users private notes'
25 Feb 2021 timeline
b'FetLife' disclosed a bug submitted by b'kapkan' 
b'Stored XSS via `Create a Fetish` section.'
25 Feb 2021 timeline
b'Logitech' disclosed a bug submitted by b'nrockhouse' 
b'SSRF allows reading AWS EC2 metadata using "readapi" variable in Streamlabs Cloudbot'
24 Feb 2021 timeline
1 ... 198 199 200 201 202 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM