Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Shopify' disclosed a bug submitted by b'zonduu' 
b'Open Redirect - www.shopify.com'
14 Jul 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'natanalves01001' 
b'(CORS) Cross-origin resource sharing misconfiguration'
14 Jul 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'balisong' 
b' SharePoint Web Services Exposed to Anonymous Access Users'
14 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'woj_ciech' 
b'Sensitive information exposure via git commit'
13 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'hunter_py' 
b'Reflected XSS on http://info.ucs.ru/settings/check/'
13 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'weev3kyaw' 
b'Stored XSS that allow an attacker to read victim mailboxes contacts in mail.ru and my.com application'
13 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'm7mdharoun' 
b'Subdomain Takeover at blog.instamart.ru'
13 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'r0hack' 
b'Cross-organization data access in city-mobil.ru'
13 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'justchillin' 
b'Reflected XSS in city-mobil.ru/'
13 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'dedsec69' 
b'Improper access control leading to deletion of Greeting videos on {https://smtp.8mar.mail.ru/}'
13 Jul 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'ch0c0' 
b'[icq.com/people/*uin*/edit] ??????????? ?????? ? ???????? ?? ????? ? ???? "???????"'
13 Jul 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'whitehatmat' 
b'Integer Overflow (CVE_2017_7529)'
13 Jul 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'dotsecurity' 
b'SSRF via Export Service in ActiveCampaign'
13 Jul 2020 timeline
b'Ruby on Rails' disclosed a bug submitted by b'ooooooo_q' 
b'File writing by Directory traversal at actionpack-page_caching and RCE by it'
13 Jul 2020 timeline
b'Helium' disclosed a bug submitted by b'amr321' 
b'Read-Only user can delete users'
10 Jul 2020 timeline
b'Twitter' disclosed a bug submitted by b'updatelap' 
b'Ability to bruteforce mopub account\xe2\x80\x99s password due to lack of rate limitation protection using {ip rotation techniques}'
10 Jul 2020 timeline
b'Maximum' disclosed a bug submitted by b'what_web' 
b'[www.werkenbijbakertilly.nl] Denial of service due to incorrect server return can result in total denial of service.'
10 Jul 2020 timeline
b'Maximum' disclosed a bug submitted by b'what_web' 
b'[www.werkenbijderet.nl] There is no rate limit for vacature-alert endpoints'
10 Jul 2020 timeline
b'Moneybird' disclosed a bug submitted by b'ant_pyne' 
b"Pending MFA logins aren't immediatly expired after a password change"
10 Jul 2020 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'justchillin' 
b'Blind SSRF on https://labs.data.gov/dashboard/Campaign/json_status/ Endpoint'
10 Jul 2020 timeline
1 ... 285 286 287 288 289 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM