Top10 publishers:
bobrov114 
linkks73 
geeknik70 
sp1d3rs62 
jobert51 
guido45 Twitter
bl4de42 
ryat40 
bigbear_38 
zombiehelp5437 Twitter

the unofficial HackerOne disclosure timeline.

X
U.S. Dept Of Defense disclosed a bug submitted by usamasood 
[?????] — DOM-based XSS on endpoint `/?s=`
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by pirateducky 
Information disclousure by clicking on the link shown in http://????????/
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by alyssa_herrera 
PII leakage due to scrceenshot of health records
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by sp1d3rs 
Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://???
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by cdl 
[CVE-2019-11510 ] Path Traversal on ???????? leads to leaked passwords, RCE, etc
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by alyssa_herrera 
Pulse Secure File disclosure, clear text and potential RCE
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by jarvis7 
[?????] Reflected GET XSS (/personnel.php?...&rcnum=*) with mouse action
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by jarvis7 
[????????] Boolean SQL Injection (/personnel.php?content=profile&rcnum=*)
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by jarvis7 
[??????] Reflected GET XSS (/personnel.php?..&folder=*) with mouse action
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by jarvis7 
[???????] Reflected GET XSS (/mission.php?...&missionDate=*)
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by alyssa_herrera 
?????????? bruteforceable RIC Codes allowing information on contracts
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by alyssa_herrera 
Email PII disclosure due to Insecure Password Reset field
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by jarvis7 
[????????] Reflected XSS
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by jarvis7 
[?????] Get all tickets (IDOR)
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by jarvis7 
[???] SQL injection & Reflected XSS
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by d0nut 
XSS on www.?????? alerts and a number of other pages
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by t-pwn 
Server-Side Request Forgery (SSRF)
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by yumi 
????? - DOM-based XSS
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by yumi 
????? - DOM-based XSS
02 Dec 2019 timeline
U.S. Dept Of Defense disclosed a bug submitted by alyssa_herrera 
Partial PII leakage due to public set gitlab
02 Dec 2019 timeline
1 2 3 4 5 ... 391
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM