Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'francisbeaudoin' 
b"Customer's full name disclosure via Shopify Chat (by email lookup)"
19 Nov 2020 timeline
b'Shopify' disclosed a bug submitted by b'francisbeaudoin' 
b'Privilege Escalation in Point Of Sale Application from POS Manage Staff Role to potentially Store Owner'
19 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'cyanpiny' 
b'Permanent DoS with one click.'
19 Nov 2020 timeline
b'BugPoC' disclosed a bug submitted by b'abankalarm' 
b'XSS :D'
19 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'No Rate Limit when accessing "Password protection" enabled surveys leads to bypassing passwords via "pd-pass_surveyid" cookie'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'IDOR when editing users leads to Account Takeover without User Interaction at CrowdSignal'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'No Email Checking at Invitation Confirmation Link leads to Account Takeover without User Interaction at CrowdSignal'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'IDOR when moving contents at CrowdSignal'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'Users can bypass page restrictions via Export feature at "Share" feature in CrowdSignal'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b"IDOR at 'media_code' when addings media to questions"
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'Reflected XSS on a Atavist theme'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'Reflected XSS at /category/ on a Atavis theme '
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'Reflected XSS on a Atavist theme at external_import.php'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'Can buy Atavist Magazine subscription for free'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'Captcha checker "pd-captcha_form_SURVEYID" cookie is accepting any value'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'IDOR when editing email leads to Account Takeover on Atavist'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'bugra' 
b'Site-wide CSRF at Atavist '
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'mygf' 
b"IDOR leads to Edit Anyone's Blogs / Websites"
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'mygf' 
b'Stored XSS on https://app.crowdsignal.com/surveys/[Survey-Id]/question - Bypass'
18 Nov 2020 timeline
b'Automattic' disclosed a bug submitted by b'mygf' 
b'Stored XSS on app.crowdsignal.com + your-subdomain.survey.fm via Embed Media'
18 Nov 2020 timeline
1 ... 246 247 248 249 250 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM