Top10 publishers:
bobrov114 
linkks75 
geeknik72 
sp1d3rs63 
jobert57 
jon_bottarini48 
netfuzzer47 
guido45 Twitter
ryat42 
bl4de42 

the unofficial HackerOne disclosure timeline.

X
U.S. Dept Of Defense disclosed a bug submitted by 0xelkomy 
Reflected Xss
21 Sep 2020 timeline
U.S. Dept Of Defense disclosed a bug submitted by oucast- 
CVE-2020-3187 - Unauthenticated Arbitrary File Deletion
21 Sep 2020 timeline
U.S. Dept Of Defense disclosed a bug submitted by 0x9747 
Sensitive information about a ??????
21 Sep 2020 timeline
Open-Xchange disclosed a bug submitted by catenacyber 
Buffer over read from `smtp_command_parse_parameters`
21 Sep 2020 timeline
Nextcloud disclosed a bug submitted by meliodas19 
Stored XSS in collabora via user name
19 Sep 2020 timeline
Mail.ru disclosed a bug submitted by nagli 
Broken twitter link hijacking at https://games.mail.ru/pc/search/
18 Sep 2020 timeline
Mail.ru disclosed a bug submitted by sniper302 
Log files Leaked In mcsblog.ru
18 Sep 2020 timeline
Node.js third-party modules disclosed a bug submitted by ansuj 
[@knutkirkhorn/free-space] - Command Injection through Lack of Sanitization
18 Sep 2020 timeline
Solana BBP disclosed a bug submitted by crazy_criminal_bj-4545 
email spoofing
17 Sep 2020 timeline
GitHub Security Lab disclosed a bug submitted by someone 
Java : add MongoDB injection sinks
17 Sep 2020 timeline
Shopify disclosed a bug submitted by wannacry0x01 
Self XSS
17 Sep 2020 timeline
New Relic disclosed a bug submitted by k3ne 
IDOR - User is able to download charts/dashboards from cross accounts
17 Sep 2020 timeline
Nextcloud disclosed a bug submitted by rbcafe 
Clear text storage of proxy parameters and passwords
16 Sep 2020 timeline
Nextcloud disclosed a bug submitted by guoxuxin 
Possible denial of service when entering a loooong password
16 Sep 2020 timeline
Node.js third-party modules disclosed a bug submitted by ermilov 
[authmagic-timerange-stateless-core] Improper Authentication
16 Sep 2020 timeline
Shopify disclosed a bug submitted by jaka_tingkir 
xss triggered in "myshopify.com/admin/product"
15 Sep 2020 timeline
InnoGames disclosed a bug submitted by mace 
Cache Poisoning via uppercase letters in invalid path
15 Sep 2020 timeline
Mail.ru disclosed a bug submitted by r0hack 
IDOR in tracking driver logs at city-mobil.ru
15 Sep 2020 timeline
Mail.ru disclosed a bug submitted by kanytu 
Database read through provider misconfiguration
15 Sep 2020 timeline
Mail.ru disclosed a bug submitted by kanytu 
Private files exposed to other apps
15 Sep 2020 timeline
1 2 3 4 5 ... 471
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM