Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'GitHub Security Lab' disclosed a bug submitted by b'luchua' 
b'Java: CWE-939 - Address improper URL authorization'
21 Jul 2020 timeline
b'8x8' disclosed a bug submitted by b'shakhawatpr99' 
b'Stored Cross Site Scripting.'
21 Jul 2020 timeline
b'Zomato' disclosed a bug submitted by b'technicaljunkie' 
b' The vulnerabilities found were XSS, Public disclosure, Network enumeration via CSRF, DLL hijacking.'
21 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'stored xss via Campaign Name.'
21 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'stored xss in app.lemlist.com'
21 Jul 2020 timeline
b'concrete5' disclosed a bug submitted by b'javakhishvili' 
b'Remote Code Execution (Reverse Shell) - File Manager'
21 Jul 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'saddean_' 
b'[express-cart] Wide CSRF in application'
21 Jul 2020 timeline
b'Courier' disclosed a bug submitted by b't3chn0phil3' 
b'SSO Provider Credential Cache (logged out of Google/GitHub, could still log into Courier)'
20 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'justchillin' 
b'User session access due to Oauth whitelist host bypass and postMessage'
20 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'alexeysergeevich' 
b'capsula.mail.ru - Admin blind stored XSS'
20 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'esetal' 
b'[geekbrains.ru] Reflected XSS via Angular Template Injection'
20 Jul 2020 timeline
b'Weblate' disclosed a bug submitted by b'fr0gz0x' 
b'Secret_key in GitHub'
18 Jul 2020 timeline
b'Staging.every.org' disclosed a bug submitted by b'dianeme' 
b'No Rate Limit On Reset Password'
17 Jul 2020 timeline
b'Phabricator' disclosed a bug submitted by b'rhinosf1' 
b'Edit Policy restriction does not prevent comments.'
17 Jul 2020 timeline
b'WordPress' disclosed a bug submitted by b'0_loophole_' 
b'Clickjacking on donation page'
16 Jul 2020 timeline
b'WordPress' disclosed a bug submitted by b'lamscun' 
b'CSRF on comment post'
16 Jul 2020 timeline
b'Shopify' disclosed a bug submitted by b'hiffley' 
b'GraphQL AdminGenerateSessionPayload is leaked to staff with no permission'
16 Jul 2020 timeline
b'Shopify' disclosed a bug submitted by b'nsl182' 
b'Account takeover intercepting magic link for Arrive app'
15 Jul 2020 timeline
b'MTN Group' disclosed a bug submitted by b'tounsi_007' 
b'Accessible Restricted directory on [bcm-bcaw.mtn.cm]'
15 Jul 2020 timeline
b'New Relic' disclosed a bug submitted by b'ldionmarcil' 
b'[synthetics.newrelic.com] SMTP header injection leads to (mass) arbitrary email sending'
15 Jul 2020 timeline
1 ... 276 277 278 279 280 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM