Top10 publishers:
b'bobrov'117 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'sp1d3rs'68 
b'someonenobbd'62 
b'nyymi'55 
b'jon_bottarini'49 
b'haxta4ok00'48 
b'netfuzzer'48 

the unofficial HackerOne disclosure timeline.

X
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[git-lib] RCE via insecure command formatting'
24 Sep 2020 timeline
b'Visma Public' disclosed a bug submitted by b'zeop' 
b'Bypassing Business ID/VAT # validation during registration to create accounts with duplicate Business ID/VAT #'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ahihi' 
b'property-expr - Prototype pollution'
24 Sep 2020 timeline
b'Starbucks' disclosed a bug submitted by b'xmfc' 
b'China - IDOR on Reservation Staging/Non Production Site - https://reservation.stg.starbucks.com.cn'
22 Sep 2020 timeline
b'Topcoder' disclosed a bug submitted by b'sodium_' 
b'Stored-Xss at connect.topcoder.com/projects/ affected on project chat members'
22 Sep 2020 timeline
b'Solana BBP' disclosed a bug submitted by b'0x4_aulia' 
b'Public and secret api key leaked via Solana BBP github repo'
22 Sep 2020 timeline
b'Valve' disclosed a bug submitted by b'kbeckmann' 
b'[steam client] Opening a specific steam:// url overwrites files at an arbitrary location'
22 Sep 2020 timeline
b'Valve' disclosed a bug submitted by b'kbeckmann' 
b'[Half-Life 1] Malformed map name leads to memory corruption and code execution'
22 Sep 2020 timeline
b'New Relic' disclosed a bug submitted by b'jhimansh' 
b'"Basic user" which can only access a limited subset of the platform can access certain pages which are restricted to the user by the account owner.'
22 Sep 2020 timeline
b'8x8' disclosed a bug submitted by b'wh0ru' 
b'DOM Based XSS at docs.8x8.com'
22 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'0xelkomy' 
b'Reflected Xss'
21 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'oucast-' 
b'CVE-2020-3187 - Unauthenticated Arbitrary File Deletion'
21 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'0x9747' 
b'Sensitive information about a ??????'
21 Sep 2020 timeline
b'Open-Xchange' disclosed a bug submitted by b'catenacyber' 
b'Buffer over read from `smtp_command_parse_parameters`'
21 Sep 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'meliodas19' 
b'Stored XSS in collabora via user name'
19 Sep 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'nagli' 
b'Broken twitter link hijacking at https://games.mail.ru/pc/search/'
18 Sep 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'sniper302' 
b'Log files Leaked In mcsblog.ru'
18 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ansuj' 
b'[@knutkirkhorn/free-space] - Command Injection through Lack of Sanitization'
18 Sep 2020 timeline
b'Solana BBP' disclosed a bug submitted by b'crazy_criminal_bj-4545' 
b'email spoofing'
17 Sep 2020 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'someonenobbd' 
b'Java : add MongoDB injection sinks'
17 Sep 2020 timeline
1 ... 218 219 220 221 222 ... 693
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM