Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'HackerOne' disclosed a bug submitted by b'nukedx' 
b'Improper data update process on UpdatePhabricatorIntegration mutation leads to leak of Phabricator Conduit API token.'
30 Apr 2021 timeline
b'Imgur' disclosed a bug submitted by b'malek' 
b'HTML Injection with XSS possible '
29 Apr 2021 timeline
b'Uber' disclosed a bug submitted by b'm7mdharoun' 
b'4 Subdomains Takeover on 2 domains ( muberscolombia.com & ubereats.pl )'
29 Apr 2021 timeline
b'Uber' disclosed a bug submitted by b'0xprial' 
b'IDOR leads to leak analytics of any restaurant'
29 Apr 2021 timeline
b'Rocket.Chat' disclosed a bug submitted by b'khekhe' 
b"Hi! Security Team Rocket.Chat, It's possible to get information about the users emails without authentication"
29 Apr 2021 timeline
b'OpenMage' disclosed a bug submitted by b'prolib' 
b'Very long names on demo.openmage.org could redirect victim users to malicious url redirects via email contacts.'
29 Apr 2021 timeline
b'BlockFi' disclosed a bug submitted by b'akitech' 
b'credentials found in config file on github'
28 Apr 2021 timeline
b'Logitech' disclosed a bug submitted by b'mrmax4o4' 
b'Privilege Escalation Leads to Control The Owner Access Token Which leads to control the stream [streamlabs.com]'
27 Apr 2021 timeline
b'VK.com' disclosed a bug submitted by b'whoami991' 
b'Member still able close another user poll on communities topic'
27 Apr 2021 timeline
b'QIWI' disclosed a bug submitted by b'kalimer0x00' 
b'MobileIron Unauthenticated RCE on mdm.qiwi.com with WAF bypass'
27 Apr 2021 timeline
b'Lark Technologies' disclosed a bug submitted by b'jin0ne' 
b'SSRF with information disclosure'
27 Apr 2021 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'0b5cur17y' 
b'[i18next] Prototype pollution attack'
26 Apr 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Unexpected federated shares added via public link'
26 Apr 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'rtod' 
b'Password policy changes not enforced for existing passwords'
26 Apr 2021 timeline
b'New Relic' disclosed a bug submitted by b'abhiram' 
b'Getting API access key Through Introspection query Graphql'
26 Apr 2021 timeline
b'OpenMage' disclosed a bug submitted by b'merbin' 
b'No error thrown when IDOR attempted while editing address'
26 Apr 2021 timeline
b'MTN Group' disclosed a bug submitted by b'tounsi_007' 
b'Remote OS Command Execution on Oracle Weblogic server via [CVE-2017-10271]'
25 Apr 2021 timeline
b'MTN Group' disclosed a bug submitted by b'tounsi_007' 
b'Remote OS Command Execution on Oracle Weblogic server via [CVE-2017-3506]'
25 Apr 2021 timeline
b'OpenMage' disclosed a bug submitted by b'grmx' 
b' Sharing products with Mail allows phishing attacks due to misconfiguration.'
25 Apr 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'p1006' 
b'[Plazius] SSRF Fiddler 46.148.201.206:10121'
24 Apr 2021 timeline
1 ... 216 217 218 219 220 ... 752
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM