Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'65 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Grammarly' disclosed a bug submitted by b'fransrosen' 
b'Config override using non-validated query parameter allows at least reflected XSS by injecting configuration into state'
01 Mar 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'secator' 
b'[xss] setTheme ajax_attach_action'
01 Mar 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'secator' 
b'[xss] url '
01 Mar 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'secator' 
b'[xss] passrestore m/touch/tel'
01 Mar 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'0ang3el' 
b'XXE webdav.mail.ru - PROPFIND/PROPPATCH'
01 Mar 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'0ang3el' 
b'Blind SSRF calendar.mail.ru '
01 Mar 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'alexanderhofstaetter' 
b'Acting under any different user via DB-stored credentials'
01 Mar 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'yzy9951' 
b'Reflected XSS when renaming a file with a vulnerable name which results in an error'
01 Mar 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'alacn1' 
b'External storage app saves password for all users in the database'
01 Mar 2021 timeline
b'Xiaomi' disclosed a bug submitted by b'l1ack3d' 
b'CORS Misconfiguration, could lead to disclosure of users information'
01 Mar 2021 timeline
b'Xiaomi' disclosed a bug submitted by b'cujanovic' 
b'DOM-based XSS in d.miwifi.com on IE 11'
01 Mar 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'tofla' 
b'Reflected XSS https://tracker.my.com'
28 Feb 2021 timeline
b'8x8' disclosed a bug submitted by b'melbadry9' 
b'DNS Misconfiguration (Subdomain Takeover) .staging..8x8.com'
28 Feb 2021 timeline
b'Lark Technologies' disclosed a bug submitted by b'w2w' 
b"Improper generating of access link at go.larksuite.com leads to access to other organizations/users' private data"
27 Feb 2021 timeline
b'Dropbox' disclosed a bug submitted by b'h4x0r_dz' 
b'User has Sender permission can Get Team information '
26 Feb 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'alexeysergeevich' 
b'capsula.mail.ru - reflected xss'
26 Feb 2021 timeline
b'Lark Technologies' disclosed a bug submitted by b'imran_nisar' 
b'Stealing app credentials by reflected xss on Lark Suite'
26 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'apolo2' 
b'Thumbor misconfiguration at blogapi.uber.com can lead to DoS'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'mariogomez1' 
b'stack trace exposed on https://receipts.uber.com/'
25 Feb 2021 timeline
b'Uber' disclosed a bug submitted by b'corb3nik' 
b'[First 30] Stored XSS on login.uber.com/oauth/v2/authorize via redirect_uri parameter'
25 Feb 2021 timeline
1 ... 225 226 227 228 229 ... 746
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM