Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Node.js third-party modules' disclosed a bug submitted by b'd3lla' 
b'[diskstats] Command Injection via insecure command concatenation'
23 Jul 2020 timeline
b'Kubernetes' disclosed a bug submitted by b'riderattitude' 
b'Private IP addresses Disclosure'
23 Jul 2020 timeline
b'Kubernetes' disclosed a bug submitted by b'hackerboy404' 
b'Clickjacking'
23 Jul 2020 timeline
b'MTN Group' disclosed a bug submitted by b'rpbeast33' 
b'Java Debug Console Provides Command Injection Without Privellage Esclation'
23 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'app.lemlist.com : Admin Panel Access'
23 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'solov9ev' 
b'Stored XSS in app.lemlist.com'
23 Jul 2020 timeline
b'Maximum' disclosed a bug submitted by b'what_web' 
b'[mijn.werkenbijdefensie.nl] Denial of service occurs due to lack of email length confirmation'
23 Jul 2020 timeline
b'Pornhub' disclosed a bug submitted by b'kaimi' 
b'View storyboard of private video @ ht.pornhub.com'
23 Jul 2020 timeline
b'Starbucks' disclosed a bug submitted by b'ko2sec' 
b'Singapore - Unrestricted File Upload Leads to XSS on campaign.starbucks.com.sg/api/upload'
22 Jul 2020 timeline
b'Starbucks' disclosed a bug submitted by b'rugb' 
b'Singapore - XXE at https://www.starbucks.com.sg/RestApi/soap11'
22 Jul 2020 timeline
b'Kubernetes' disclosed a bug submitted by b'kebe' 
b'Node disk DOS by writing to container /etc/hosts'
22 Jul 2020 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'luchua' 
b'Java: CWE-939 - Address improper URL authorization'
21 Jul 2020 timeline
b'8x8' disclosed a bug submitted by b'shakhawatpr99' 
b'Stored Cross Site Scripting.'
21 Jul 2020 timeline
b'Zomato' disclosed a bug submitted by b'technicaljunkie' 
b' The vulnerabilities found were XSS, Public disclosure, Network enumeration via CSRF, DLL hijacking.'
21 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'stored xss via Campaign Name.'
21 Jul 2020 timeline
b'lemlist' disclosed a bug submitted by b'omarelfarsaoui' 
b'stored xss in app.lemlist.com'
21 Jul 2020 timeline
b'concrete5' disclosed a bug submitted by b'javakhishvili' 
b'Remote Code Execution (Reverse Shell) - File Manager'
21 Jul 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'saddean_' 
b'[express-cart] Wide CSRF in application'
21 Jul 2020 timeline
b'Courier' disclosed a bug submitted by b't3chn0phil3' 
b'SSO Provider Credential Cache (logged out of Google/GitHub, could still log into Courier)'
20 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'justchillin' 
b'User session access due to Oauth whitelist host bypass and postMessage'
20 Jul 2020 timeline
1 ... 283 284 285 286 287 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM