Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Open-Xchange' disclosed a bug submitted by b'zhutyra' 
b'XSS - Notes - Attribute injection through overlapping tags'
01 May 2021 timeline
b'Open-Xchange' disclosed a bug submitted by b'zhutyra' 
b'XSS - Search - Unescaped contact job'
01 May 2021 timeline
b'Twitter' disclosed a bug submitted by b'nagli' 
b'Open Redirect on https://www.twitterflightschool.com/widgets/experience?destination_url=https://evil.com'
01 May 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Nextcloud update checks leaks information'
01 May 2021 timeline
b'PayPal' disclosed a bug submitted by b'bagipro' 
b'Unsafe deserialization leads to token leakage in PayPal & PayPal for Business [Android]'
30 Apr 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'0x7' 
b'[web.icq.com] Stored XSS in Account Name'
30 Apr 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'order1000' 
b'Gitlab search exposing personal data of employees on gitlab-edu.geekbrains.ru'
30 Apr 2021 timeline
b'Homebrew' disclosed a bug submitted by b'nightwatch-cybersecurity' 
b'Brew bootstrap process is insecure'
30 Apr 2021 timeline
b'curl' disclosed a bug submitted by b'mingtao' 
b'CVE-2021-22890: TLS 1.3 session ticket proxy host mixup'
30 Apr 2021 timeline
b'curl' disclosed a bug submitted by b'vsz' 
b'CVE-2021-22876: Automatic referer leaks credentials'
30 Apr 2021 timeline
b'HackerOne' disclosed a bug submitted by b'nukedx' 
b'Improper data update process on UpdatePhabricatorIntegration mutation leads to leak of Phabricator Conduit API token.'
30 Apr 2021 timeline
b'Imgur' disclosed a bug submitted by b'malek' 
b'HTML Injection with XSS possible '
29 Apr 2021 timeline
b'Uber' disclosed a bug submitted by b'm7mdharoun' 
b'4 Subdomains Takeover on 2 domains ( muberscolombia.com & ubereats.pl )'
29 Apr 2021 timeline
b'Uber' disclosed a bug submitted by b'0xprial' 
b'IDOR leads to leak analytics of any restaurant'
29 Apr 2021 timeline
b'Rocket.Chat' disclosed a bug submitted by b'khekhe' 
b"Hi! Security Team Rocket.Chat, It's possible to get information about the users emails without authentication"
29 Apr 2021 timeline
b'OpenMage' disclosed a bug submitted by b'prolib' 
b'Very long names on demo.openmage.org could redirect victim users to malicious url redirects via email contacts.'
29 Apr 2021 timeline
b'BlockFi' disclosed a bug submitted by b'akitech' 
b'credentials found in config file on github'
28 Apr 2021 timeline
b'Logitech' disclosed a bug submitted by b'mrmax4o4' 
b'Privilege Escalation Leads to Control The Owner Access Token Which leads to control the stream [streamlabs.com]'
27 Apr 2021 timeline
b'VK.com' disclosed a bug submitted by b'whoami991' 
b'Member still able close another user poll on communities topic'
27 Apr 2021 timeline
b'QIWI' disclosed a bug submitted by b'kalimer0x00' 
b'MobileIron Unauthenticated RCE on mdm.qiwi.com with WAF bypass'
27 Apr 2021 timeline
1 ... 205 206 207 208 209 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM