Top10 publishers:
bobrov117 
geeknik78 
linkks75 
sp1d3rs68 
jobert63 
jon_bottarini49 
netfuzzer48 
ryat47 
someonenobbd47 
guido45 Twitter

the unofficial HackerOne disclosure timeline.

X
UPchieve disclosed a bug submitted by 171217 
hackers.upchieve.org and argocd.upchieve.org is not preloaded.
28 Jul 2021 timeline
UPchieve disclosed a bug submitted by ben_lay 
blind sql on [ https://argocd.upchieve.org/login?return_url=id= ]
28 Jul 2021 timeline
Mail.ru disclosed a bug submitted by nakabonne 
[geekbrains.ru] Node modules path disclosure due to lack of error handling
27 Jul 2021 timeline
Mail.ru disclosed a bug submitted by act1on3 
[app-01.youdrive.club] RCE in CI/CD via dependency confusion
27 Jul 2021 timeline
Shopify disclosed a bug submitted by augustozanellato 
Github access token exposure
26 Jul 2021 timeline
Phabricator disclosed a bug submitted by crownpeanut 
Git flag injection leads to arbitrary file write
25 Jul 2021 timeline
The Internet disclosed a bug submitted by metnew 
Uncovering file quarantine and UX security issues in macOS apps ( .terminal, .fileloc and .url)
23 Jul 2021 timeline
The Internet disclosed a bug submitted by simonscannell 
[CVE-2020-27194] Linux kernel: eBPF verifier bug in `or` binary operation tracking function leads to LPE
23 Jul 2021 timeline
Data Processing (IBB) disclosed a bug submitted by dotsecurity 
tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c
23 Jul 2021 timeline
The Internet disclosed a bug submitted by vanhoefm 
Fragmentation and Aggregation Flaws in Wi-Fi
23 Jul 2021 timeline
The Internet disclosed a bug submitted by itszn 
Canonical Snapcraft vulnerable to remote code execution under certain conditions
23 Jul 2021 timeline
U.S. General Services Administration disclosed a bug submitted by rajeshpatil 
Account takeover through multistage CSRF at https://autochoice.fas.gsa.gov/AutoChoice/changeQAOktaAnswer and ../AutoChoice/changePwOktaAnswer
23 Jul 2021 timeline
Lark Technologies disclosed a bug submitted by shell_c0de 
[Lark Android] Vulnerability in exported activity WebView
22 Jul 2021 timeline
Mail.ru disclosed a bug submitted by alexeysergeevich 
[tanks.mail.ru] SSRF + cookie
22 Jul 2021 timeline
Mail.ru disclosed a bug submitted by sec_zone64 
Bypassing SOP with XSS on account.my.games leading to steal CSRF token and user information
22 Jul 2021 timeline
Mail.ru disclosed a bug submitted by 01alsanosi 
Unauthorized Access To Admin panel
22 Jul 2021 timeline
Khan Academy disclosed a bug submitted by renganathan 
Enumerate all the class codes via google dorking
22 Jul 2021 timeline
Uber disclosed a bug submitted by penguinsaretasty 
pam_ussh does not properly validate the SSH certificate authority
21 Jul 2021 timeline
curl disclosed a bug submitted by thoger 
CVE-2021-22925: TELNET stack contents disclosure again
21 Jul 2021 timeline
Bumble disclosed a bug submitted by robertheaton 
Exfiltrating a victim's exact location (to within 5m)
21 Jul 2021 timeline
1 2 3 4 5 ... 558
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM