Top10 publishers:
bobrov116 
linkks75 
geeknik73 
sp1d3rs63 
jobert60 
jon_bottarini48 
netfuzzer47 
ryat47 
guido45 Twitter
skavans42 

the unofficial HackerOne disclosure timeline.

X
Basecamp disclosed a bug submitted by gammarex 
Remote code execution on Basecamp.com
26 Nov 2020 timeline
Basecamp disclosed a bug submitted by hudmi 
Attachments may be hijacked via AppCache+CookieBombing trick (bc3_production_blobs bucket)
26 Nov 2020 timeline
Logitech disclosed a bug submitted by bugra 
IDOR when creating App on [platform.streamlabs.com/api/v1/store/whitelist] with user_id field
26 Nov 2020 timeline
Palo Alto Software disclosed a bug submitted by ph-hitachi 
IDOR on notes to HTML injection
26 Nov 2020 timeline
Bumble disclosed a bug submitted by godzkid 
On Singing up with a Phone number , The 4 digit OTP does not expires for a long time leading to an easy attack and make a verified account easilty
25 Nov 2020 timeline
Zendesk disclosed a bug submitted by imran_nazir 
CSRF on developer.zendesk.com via Cache Deception
25 Nov 2020 timeline
Mail.ru disclosed a bug submitted by naategh 
lenta_proxy information disclosure
25 Nov 2020 timeline
Mail.ru disclosed a bug submitted by paul_axe 
Source code and internal credentials disclosure
25 Nov 2020 timeline
Mail.ru disclosed a bug submitted by elmahdi 
Blind SSRF on http://info.ucs.ru/settings/check/
25 Nov 2020 timeline
Mail.ru disclosed a bug submitted by elmahdi 
Redmin API Key Exposed In GIthub
25 Nov 2020 timeline
Mail.ru disclosed a bug submitted by sicksec 
Access User Tickets via IDOR in [widget.support.my.games]
25 Nov 2020 timeline
Mail.ru disclosed a bug submitted by sodium_ 
the same as #948259 - XSS at jsgames.mail.ru
25 Nov 2020 timeline
Mail.ru disclosed a bug submitted by steal_wart 
Information Disclosure
25 Nov 2020 timeline
BugPoC disclosed a bug submitted by virenpawar 
Solution to the XSS Challenge
24 Nov 2020 timeline
Helium disclosed a bug submitted by eissen5c 
Hyperlink Injection on Email Invitation
24 Nov 2020 timeline
U.S. Dept Of Defense disclosed a bug submitted by balisong 
SharePoint Web Services Exposed to Anonymous Access
24 Nov 2020 timeline
U.S. Dept Of Defense disclosed a bug submitted by balisong 
SharePoint Web Services Exposed to Anonymous Access
24 Nov 2020 timeline
U.S. Dept Of Defense disclosed a bug submitted by moloshy 
Local File Inclusion In Registration Page
23 Nov 2020 timeline
U.S. Dept Of Defense disclosed a bug submitted by silentbreach 
View another user information with IDOR vulnerability
23 Nov 2020 timeline
U.S. Dept Of Defense disclosed a bug submitted by nagli 
Reflected XSS on https:/// (Bypass of #1002977)
23 Nov 2020 timeline
1 2 3 4 5 ... 490
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM