Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'concrete5' disclosed a bug submitted by b'javakhishvili' 
b'Cross Site Scripting (XSS) Stored - Private messaging'
25 Sep 2020 timeline
b'HackerOne' disclosed a bug submitted by b'vakzz' 
b'Reflected XSS on www.hackerone.com via Wistia embed code'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[snekserve] Stored XSS via filenames HTML formatted'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[commit-msg] RCE via insecure command formatting'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[gity] RCE via insecure command formatting'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'lightangel1412' 
b'[http_server] Path Traversal allowing to read any files on the server'
24 Sep 2020 timeline
b'Twitter' disclosed a bug submitted by b'alesandroortiz' 
b'Android WebViews in Twitter app are vulnerable to UXSS due to configuration and CVE-2020-6506'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'lightangel1412' 
b'[hnzserver] Path Traversal allowing to read any files on the server'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[git-lib] RCE via insecure command formatting'
24 Sep 2020 timeline
b'Visma Public' disclosed a bug submitted by b'zeop' 
b'Bypassing Business ID/VAT # validation during registration to create accounts with duplicate Business ID/VAT #'
24 Sep 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ahihi' 
b'property-expr - Prototype pollution'
24 Sep 2020 timeline
b'Starbucks' disclosed a bug submitted by b'xmfc' 
b'China - IDOR on Reservation Staging/Non Production Site - https://reservation.stg.starbucks.com.cn'
22 Sep 2020 timeline
b'Topcoder' disclosed a bug submitted by b'sodium_' 
b'Stored-Xss at connect.topcoder.com/projects/ affected on project chat members'
22 Sep 2020 timeline
b'Solana BBP' disclosed a bug submitted by b'0x4_aulia' 
b'Public and secret api key leaked via Solana BBP github repo'
22 Sep 2020 timeline
b'Valve' disclosed a bug submitted by b'kbeckmann' 
b'[steam client] Opening a specific steam:// url overwrites files at an arbitrary location'
22 Sep 2020 timeline
b'Valve' disclosed a bug submitted by b'kbeckmann' 
b'[Half-Life 1] Malformed map name leads to memory corruption and code execution'
22 Sep 2020 timeline
b'New Relic' disclosed a bug submitted by b'jhimansh' 
b'"Basic user" which can only access a limited subset of the platform can access certain pages which are restricted to the user by the account owner.'
22 Sep 2020 timeline
b'8x8' disclosed a bug submitted by b'wh0ru' 
b'DOM Based XSS at docs.8x8.com'
22 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'0xelkomy' 
b'Reflected Xss'
21 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'oucast-' 
b'CVE-2020-3187 - Unauthenticated Arbitrary File Deletion'
21 Sep 2020 timeline
1 ... 262 263 264 265 266 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM