Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'57 
b'ooooooo_q'50 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Mail.ru' disclosed a bug submitted by b'jayesh25' 
b'Improper Restriction of Excessive Authentication Attempts at http://terrafoot.ru/login.php (Rate Limit bypass via IP Rotation)'
22 Jan 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'jayesh25' 
b'Account Takeover via Forgot Password Page at https://3k.mail.ru/send_password.php?'
22 Jan 2021 timeline
b'Enjin' disclosed a bug submitted by b'michael7854' 
b"Reset password policy isn't consistent with registration / change password policy."
22 Jan 2021 timeline
b'Rockstar Games' disclosed a bug submitted by b'bugstar' 
b'phpinfo() on graph.rockstargames.com exposes sensitive information'
21 Jan 2021 timeline
b'New Relic' disclosed a bug submitted by b'batuhan' 
b"Adding your account to victim's app via deeplink"
21 Jan 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'demonia' 
b'Potential DDoS when posting long data into workflow validation rules'
21 Jan 2021 timeline
b'Logitech' disclosed a bug submitted by b'sudi' 
b'Manipulating response leads to free access to Streamlabs Prime '
21 Jan 2021 timeline
b'Logitech' disclosed a bug submitted by b'hein_thant' 
b'Sensitive information disclosure to shared access user via streamlabs platform api'
20 Jan 2021 timeline
b'Logitech' disclosed a bug submitted by b'hein_thant' 
b'Moderator shared access allows access to support.streamlabs.com'
20 Jan 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'tr3harder' 
b'Access admin interface via bad credentials'
20 Jan 2021 timeline
b'TikTok' disclosed a bug submitted by b'emanuelharijanto' 
b'Information Disclosure of Advertiser Account on TikTok Ads Portal'
20 Jan 2021 timeline
b'Enjin' disclosed a bug submitted by b'michael7854' 
b'POST /api/platform/images allows for Arbitrary file upload + Full stored XSS'
20 Jan 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'act1on3' 
b'[api-site.city-mobil.ru] Improper access control leads to information disclosure (bypass of #977597 fix)'
20 Jan 2021 timeline
b'Kartpay' disclosed a bug submitted by b'bugera' 
b'Misconfiguration of Merchant id in jwt header + Weird Debug mode enabling behavior leads to exposed OTP of mobile number.'
20 Jan 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'prolib' 
b'[nextcloud.com] Control character allowed in Submit Question'
20 Jan 2021 timeline
b'Informatica' disclosed a bug submitted by b'lu3ky-13' 
b'loing in to marketplace panel on enablement.informatica.com'
20 Jan 2021 timeline
b'Revive Adserver' disclosed a bug submitted by b'mbeccati' 
b'Open redirect in ck.php and lg.php'
20 Jan 2021 timeline
b'Revive Adserver' disclosed a bug submitted by b'keyurvala' 
b'Cross Site Scripting and Open Redirect in affiliate-preview.php file '
20 Jan 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'kanytu' 
b'Database read through file attachment [content://]'
20 Jan 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'kwel' 
b' "E-Mail " [corporate.city-mobil.ru]'
20 Jan 2021 timeline
1 ... 208 209 210 211 212 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM