Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'57 
b'ooooooo_q'50 
b'haxta4ok00'49 
b'jon_bottarini'49 

the unofficial HackerOne disclosure timeline.

X
b'Mail.ru' disclosed a bug submitted by b'kwel' 
b'? ???????? ????? ????????????? ? ???????? ?????? ?????? ?????? ??? ???????????'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'tr3harder' 
b'IDOR of contracts on dictor.mail.ru'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'0x01alka' 
b'???????? ??????? Tarantool'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'maxarr' 
b'HTTP request smuggling (?) canpol.deti.mail.ru'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'setuid' 
b'XSS via "gp" cookie reflected in source code'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'bobrov' 
b'[geekbrains.ru] CVE-2019-5418 Ruby on Rails File Content Disclosure'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'sniper302' 
b'SECRET_KEY Of Django Leaked In maps.me'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'organdonor' 
b'Ability to edit the address of any company by its id on [corporate.city-mobil.ru]'
05 Oct 2020 timeline
b'Open-Xchange' disclosed a bug submitted by b'rumata' 
b'A specifically designed sieve script can cause a DoS in lib-sieve during sieve script compilation via NULL pointer dereference'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'zoczus' 
b'ICQ Android APP remote DoS'
05 Oct 2020 timeline
b'HackerOne' disclosed a bug submitted by b'spongebhav' 
b'Making program preference -> program visibilty feature usless and disclosing API Identifier in the progress and data that may cause potential IDORS.'
02 Oct 2020 timeline
b'GitLab' disclosed a bug submitted by b'cache-money' 
b'Ability to bypass email verification for OAuth grants results in accounts takeovers on 3rd parties'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'byq' 
b'[city-mobil.ru] SSRF & limited LFR on /taxiserv/photoeditor/save endpoint via base64 POST parameter'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'act1on3' 
b'[panel.city-mobil.ru/admin/] Blind XSS via partner name (similar to #746505)'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'paul_axe' 
b'Blind SSRF in horizon-heat'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'paul_axe' 
b'Blind SSRF in magnum upgrade_params'
01 Oct 2020 timeline
b'CS Money' disclosed a bug submitted by b'enigmaticjohn' 
b'Application DOS via specially crafted payload on 3d.cs.money'
01 Oct 2020 timeline
b'CS Money' disclosed a bug submitted by b'abdilahrf_' 
b'[cs.money] Open Redirect Leads to Account Takeover'
30 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'gamer7112' 
b'DOM XSS on https://www.???????'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nirajgautamit' 
b'Reflected XSS in https://www.??????/'
29 Sep 2020 timeline
1 ... 241 242 243 244 245 ... 719
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM