Top10 publishers:
bobrov114 
linkks73 
geeknik70 
sp1d3rs62 
jobert52 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
Razer disclosed a bug submitted by t4kemyh4nd 
[IDOR] API endpoint leaking sensitive user information
09 Jan 2020 timeline
Ian Dunn disclosed a bug submitted by bruteforce 
Dos https://iandunn.name/ via CVE-2018-6389 exploitation
09 Jan 2020 timeline
8x8 disclosed a bug submitted by kingragnar 
Access to ?????????????? due to weak credentials
08 Jan 2020 timeline
Dovecot disclosed a bug submitted by nick_roessler 
Two heap use-after-free errors in IMAP operations
08 Jan 2020 timeline
PayPal disclosed a bug submitted by alexbirsan 
Token leak in security challenge flow allows retrieving victim's PayPal email and plain text password
08 Jan 2020 timeline
WordPress disclosed a bug submitted by simonscannell 
Potential unprivileged Stored XSS through wp_targeted_link_rel
08 Jan 2020 timeline
NordVPN disclosed a bug submitted by cassiomcampos 
DoS of https://nordvpn.com/ via CVE-2018-6389 exploitation
08 Jan 2020 timeline
Stripo Inc disclosed a bug submitted by jasongardner 
Clickjacking on my.stripo.email for MailChimp credentials
08 Jan 2020 timeline
Ian Dunn disclosed a bug submitted by shrimant_yogi 
xmlrpc.php FILE IS enable it can be used for conducting a Bruteforce attack and Denial of Service(DoS)
07 Jan 2020 timeline
LifeOmic disclosed a bug submitted by base_64 
open redirect while login at https://apps.dev.jupiterone.io can leak access code.
06 Jan 2020 timeline
LifeOmic disclosed a bug submitted by zsbappa 
Improper signup & sign-in validation
06 Jan 2020 timeline
NordVPN disclosed a bug submitted by shardulb_23 
xmlrpc.php FILE IS enable it will used for Bruteforce attack and Denial of Service(DoS)
06 Jan 2020 timeline
Node.js third-party modules disclosed a bug submitted by ermilov 
[express-laravel-passport] Improper Authentication
04 Jan 2020 timeline
Node.js third-party modules disclosed a bug submitted by ermilov 
[atlasboard-atlassian-package] Cross-site Scripting (XSS)
04 Jan 2020 timeline
Coda disclosed a bug submitted by fisher 
Lack or Origin check leads to Cross-Site Websocket Hijacking (CSWSH)
04 Jan 2020 timeline
Intel Corporation disclosed a bug submitted by kushal89shah 
[FG-VD-19-009] Intel(R) Trace Analyzer and Collector 2019 Memory Corruption Vulnerability Notification
02 Jan 2020 timeline
Coda disclosed a bug submitted by stefanofinding 
Use Github pack with Coda employee github account (search code of Coda's private repositories)
02 Jan 2020 timeline
PUBG disclosed a bug submitted by renekroka 
RXSS to Stored XSS - forums.pubg.com | URL parameter
02 Jan 2020 timeline
Rocket.Chat disclosed a bug submitted by sectex 
XSS (leads to arbitrary file read in Rocket.Chat-Desktop)
02 Jan 2020 timeline
Rocket.Chat disclosed a bug submitted by ant_pyne 
Clickjacking in the admin page
02 Jan 2020 timeline
1 2 3 4 5 ... 397
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM