Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Mail.ru' disclosed a bug submitted by b'organdonor' 
b'Ability to edit the address of any company by its id on [corporate.city-mobil.ru]'
05 Oct 2020 timeline
b'Open-Xchange' disclosed a bug submitted by b'rumata' 
b'A specifically designed sieve script can cause a DoS in lib-sieve during sieve script compilation via NULL pointer dereference'
05 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'zoczus' 
b'ICQ Android APP remote DoS'
05 Oct 2020 timeline
b'HackerOne' disclosed a bug submitted by b'spongebhav' 
b'Making program preference -> program visibilty feature usless and disclosing API Identifier in the progress and data that may cause potential IDORS.'
02 Oct 2020 timeline
b'GitLab' disclosed a bug submitted by b'cache-money' 
b'Ability to bypass email verification for OAuth grants results in accounts takeovers on 3rd parties'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'byq' 
b'[city-mobil.ru] SSRF & limited LFR on /taxiserv/photoeditor/save endpoint via base64 POST parameter'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'act1on3' 
b'[panel.city-mobil.ru/admin/] Blind XSS via partner name (similar to #746505)'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'paul_axe' 
b'Blind SSRF in horizon-heat'
01 Oct 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'paul_axe' 
b'Blind SSRF in magnum upgrade_params'
01 Oct 2020 timeline
b'CS Money' disclosed a bug submitted by b'enigmaticjohn' 
b'Application DOS via specially crafted payload on 3d.cs.money'
01 Oct 2020 timeline
b'CS Money' disclosed a bug submitted by b'abdilahrf_' 
b'[cs.money] Open Redirect Leads to Account Takeover'
30 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'gamer7112' 
b'DOM XSS on https://www.???????'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nirajgautamit' 
b'Reflected XSS in https://www.??????/'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nirajgautamit' 
b'Reflected XSS in https://www.?????/'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jayhanspara' 
b'Cross Site Scripting (XSS) \xe2\x80\x93 Reflected'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nagli' 
b'IDOR to Account Takeover on https://????/index.html'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'dwisiswant0' 
b'Unauthenticated Arbitrary File Deletion ("CVE-2020-3187") in ????????'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'erbbysam' 
b'SQLi in login form of ?????'
29 Sep 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'un4gi' 
b'Stored XSS via Comment Form at ????????'
29 Sep 2020 timeline
b'Yelp' disclosed a bug submitted by b'oxecho' 
b'Email flooding using user invitation feature in biz.yelp.com due to lack of rate limiting '
29 Sep 2020 timeline
1 ... 264 265 266 267 268 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM