Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'57 
b'ooooooo_q'50 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'GitLab' disclosed a bug submitted by b'chaosbolt' 
b'Instant open redirect on Live preview WEB Ide opening'
04 Nov 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'kittytrace' 
b'No rate limiting for confirmation email lead to huge Mass mailings'
04 Nov 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'st00rm' 
b'Path traversal on bank.mail.ru ( CVE-2013-3827 )'
04 Nov 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'dennisleo6' 
b'cross site scripting bypass session '
04 Nov 2020 timeline
b'GitLab' disclosed a bug submitted by b'ajxchapman' 
b'GitLab-Runner on Windows `DOCKER_AUTH_CONFIG` container host Command Injection'
04 Nov 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'maxarr' 
b'mrgs.my.games account takeover'
03 Nov 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'jayesh25' 
b'Account Takeover possibility via https://awards.donationalerts.com using login with twitch.tv'
03 Nov 2020 timeline
b'Acronis' disclosed a bug submitted by b'dgirlwhohacks' 
b'Clickjacking on cas.acronis.com login page'
03 Nov 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'pi_hunter50' 
b'PII Leak (such as CAC User ID) at https:///pages/login.aspx'
02 Nov 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'soldawn' 
b'403 Forbidden Bypass at www..mil'
02 Nov 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'x3ph_' 
b'hardcoded password stored in javascript of https://.mil'
02 Nov 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'kaulse' 
b'Access to Unclassified / FOUO Advanced Motion Platform of .mil'
02 Nov 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'kegn' 
b'Reflected XSS in https:// via search parameter'
02 Nov 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'polygon35' 
b'[] SQL Injections on Referer Header exploitable via Time-Based method'
02 Nov 2020 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'SafeParamsHelper::safe_params is not so safe'
02 Nov 2020 timeline
b'Maker Ecosystem Growth Holdings, Inc' disclosed a bug submitted by b'lalit2020' 
b"A specially crafted value for the 'Cache-Digest' header causing crash in chat.makerdao.com"
02 Nov 2020 timeline
b'GitLab' disclosed a bug submitted by b'ledz1996' 
b'Insufficient Type Check leading to Developer ability to delete Project, Repository, Group, ...'
02 Nov 2020 timeline
b'GitLab' disclosed a bug submitted by b'ledz1996' 
b'Insufficient Type Check on GraphQL leading to Maintainer delete repository'
02 Nov 2020 timeline
b'GitLab' disclosed a bug submitted by b'vaib25vicky' 
b'Todos are not redacted when membership changes - Access to (confidential) issues and merge requests'
02 Nov 2020 timeline
b'GitLab' disclosed a bug submitted by b'steppe' 
b'Possibilty to purchase Ultimate - 1 Year (EDU or OSS)'
02 Nov 2020 timeline
1 ... 232 233 234 235 236 ... 718
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM