Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'UPchieve' disclosed a bug submitted by b'shoaib_18' 
b"No Valid SPF Records/don't have DMARC record"
18 May 2021 timeline
b'Twitter' disclosed a bug submitted by b'iambouali' 
b'Bypass t.co link shortener in Twitter direct messages'
18 May 2021 timeline
b'CS Money' disclosed a bug submitted by b'gatolouco' 
b'Previously created sessions continue being valid after MFA activation'
18 May 2021 timeline
b'WordPress' disclosed a bug submitted by b'sonarsource' 
b'Authenticated XXE'
18 May 2021 timeline
b'Starbucks' disclosed a bug submitted by b'elber' 
b'Japan - CSRF in webapp.starbucks.co.jp with user interaction could leak an access token if the user was not using Chrome'
18 May 2021 timeline
b'Valve' disclosed a bug submitted by b'simonscannell' 
b'CS:GO Server -> Client RCE through OOB access in CSVCMsg_SplitScreen + Info leak in HTTP download'
17 May 2021 timeline
b'WordPress' disclosed a bug submitted by b'hoangkien1020' 
b'Privilege Escalation via REST API to Administrator leads to RCE'
17 May 2021 timeline
b'Informatica' disclosed a bug submitted by b'rawezh_ali' 
b'Cross site scripting '
17 May 2021 timeline
b'UPchieve' disclosed a bug submitted by b'mr-zero' 
b'User enumeration through forget password'
16 May 2021 timeline
b'Sifchain' disclosed a bug submitted by b'b29z' 
b'Open S3 Bucket | information leakage'
15 May 2021 timeline
b'Sifchain' disclosed a bug submitted by b'bringing2021' 
b'Information Disclosure on https://rpc.sifchain.finance/'
15 May 2021 timeline
b'Uber' disclosed a bug submitted by b'beezlewaxin' 
b'private passenger information is exposed to the Uber Driver app during ride dispatch ("Ping") events'
14 May 2021 timeline
b'UPchieve' disclosed a bug submitted by b'zero_or_1' 
b'Zero click account Takeover due to Api misconfiguration '
14 May 2021 timeline
b'UPchieve' disclosed a bug submitted by b'saajanbhujel' 
b'Full account takeover of any user through reset password'
14 May 2021 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'RCE when removing metadata with ExifTool'
14 May 2021 timeline
b'8x8' disclosed a bug submitted by b'ian' 
b'Subdomain takeover of .jitsi.net'
14 May 2021 timeline
b'Uber' disclosed a bug submitted by b'hunt4p1zza' 
b'Request Access for Uber Device Returns Management Platform (https://www.eats-devicereturns.com/request-access/) Bypass Allows Access to PII'
14 May 2021 timeline
b'Sifchain' disclosed a bug submitted by b'himan253' 
b"No Valid SPF Records/don't have DMARC record"
14 May 2021 timeline
b'Uber' disclosed a bug submitted by b'hunt4p1zza' 
b'Unrestricted File Upload Results in Cross-Site Scripting Attacks'
14 May 2021 timeline
b'Uber' disclosed a bug submitted by b'bubbounty' 
b"Corss-Tenant IDOR on Business allowing escalation privilege, invitation takeover, and edition of any other Businesses' employees"
14 May 2021 timeline
1 ... 200 201 202 203 204 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM