Top10 publishers:
bobrov117 
geeknik78 
linkks75 
sp1d3rs66 
jobert61 
jon_bottarini49 
netfuzzer48 
ryat47 
guido45 Twitter
bl4de42 

the unofficial HackerOne disclosure timeline.

X
Mail.ru disclosed a bug submitted by b404c057ae68e03c3dc721d 
CVE-2020-3187 ip 91.231.115.30
06 May 2021 timeline
Mail.ru disclosed a bug submitted by jayesh25 
Improper Restriction of Excessive Authentication Attempts at https://top.mail.ru/edit? for site counter (Rate Limit bypass via IP Rotation)
06 May 2021 timeline
Mail.ru disclosed a bug submitted by jayesh25 
Clickjacking Vulnerability via https://profile.my.games/gamecenter/profile/ can lead to sensitive cross site actions (Bypass X-Frame-Options)
06 May 2021 timeline
Mail.ru disclosed a bug submitted by jayesh25 
Improper Restriction of Excessive Authentication Attempts at https://mirror.w1.dwar.ru/login.php
06 May 2021 timeline
Moneybird disclosed a bug submitted by 0xprial 
Bypass of Rate limiting in secure_session endpoint's password input will lead to user password disclosure
06 May 2021 timeline
HackerOne disclosed a bug submitted by whhackersbr 
Editing Pentest Summary Report Answers After Submitting Them
06 May 2021 timeline
HackerOne disclosed a bug submitted by whhackersbr 
Changing the 2FA secret key and backup codes without knowing the 2FA OTP
06 May 2021 timeline
Valve disclosed a bug submitted by gamer7112 
Specially Crafted Closed Captions File can lead to Remote Code Execution in CS:GO and other Source Games
05 May 2021 timeline
GitHub Security Lab disclosed a bug submitted by ihsinme 
ihsinme: CPP Add query for CWE-691 Insufficient Control Flow Management When Using Bit Operations
04 May 2021 timeline
GitHub Security Lab disclosed a bug submitted by p0wn4j 
[Java] CWE-094: Query to detect Groovy Code Injections
04 May 2021 timeline
GitHub Security Lab disclosed a bug submitted by jessforfun 
Java: JSONP Injection
04 May 2021 timeline
GitHub Security Lab disclosed a bug submitted by artem 
[Java] Query for detecting Jakarta Expression Language injections
04 May 2021 timeline
GitHub Security Lab disclosed a bug submitted by someone 
[Java] CWE-348: Use of less trusted source
04 May 2021 timeline
GitHub Security Lab disclosed a bug submitted by ihsinme 
ihsinme: CPP Add query for CWE-691 Insufficient Control Flow Management After Refactoring The Code
04 May 2021 timeline
GitHub Security Lab disclosed a bug submitted by someone 
[JAVA]: CWE-347 - Improper Verification of Cryptographic Signature : Potential for Auth Bypass
04 May 2021 timeline
Valve disclosed a bug submitted by pixelindigo 
GoldSrc: Buffer Overflow in DELTA_ParseDelta function leads to RCE
04 May 2021 timeline
Valve disclosed a bug submitted by nyancat0131 
[GoldSrc] Remote Code Execution using malicious WAD list in BSP file
04 May 2021 timeline
Valve disclosed a bug submitted by slidybat 
OOB reads in network message handlers leads to RCE
04 May 2021 timeline
Flickr disclosed a bug submitted by sector035 
Improper access control in place for "member only" groups via root.YUI_config.flickr.api.site_key
03 May 2021 timeline
Flickr disclosed a bug submitted by xparrot 
Stored open redirect in about page
03 May 2021 timeline
1 2 3 4 5 ... 539
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM