Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Engel & V\xc3\xb6lkers Technology GmbH' disclosed a bug submitted by b'0xd0ff' 
b'XSS reflected in https://tableau.engelvoelkers.com/'
17 Jun 2020 timeline
b'Razer' disclosed a bug submitted by b's3cr3tsdn' 
b'???? OS Command Injection at https://sea-web.gold.razer.com/lab/ws-lookup via IP parameter'
17 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'neweq' 
b'Default credentials for the temporary POC site alipoc.stg.starbucks.com.cn permitted WAF bypass and RCE'
16 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'zlz' 
b'Misuse of an authentication cookie combined with a path traversal on app.starbucks.com permitted access to restricted data'
16 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'bayotop' 
b'Reflected DOM XSS on www.starbucks.co.uk'
16 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'bayotop' 
b'Reflected XSS on https://www.starbucks.co.uk/shop/paymentmethod/ (bypass for 227486)'
16 Jun 2020 timeline
b'Helium' disclosed a bug submitted by b'error___404' 
b'unpermitted user can change the device name of admin account'
16 Jun 2020 timeline
b'Ruby on Rails' disclosed a bug submitted by b'fletchto99' 
b'Rack parses encoded cookie names allowing an attacker to send malicious `__Host-` and `__Secure-` prefixed cookies'
16 Jun 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'd3lla' 
b'[devcert] Command Injection via insecure command formatting'
15 Jun 2020 timeline
b'Rocket.Chat' disclosed a bug submitted by b'elfiman' 
b'account takeover on 3.0.1 version'
14 Jun 2020 timeline
b'DuckDuckGo' disclosed a bug submitted by b'cujanovic' 
b'DOM XSS on duckduckgo.com search'
14 Jun 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'a9hora' 
b'Cross site scripting - XSRF Token'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'xpronator' 
b'rxss at https://mackeeper.com page not found via rid parameter'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'r3ggi-on-h1' 
b'Local Privilege escalation to root via XPC'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'jair' 
b'Affiliates - Session Fixation'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'Open Redirect at https://store.mackeeper.com/767/cookie via redirectto parameter'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'RXSS on landings/land/3/ron_clean_17_app3_alerts/index.php (mackeeperapp3.mackeeper.com)'
13 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'RXSS on unsubscribe feature (affiliates.kromtech.com)'
13 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'Reflected XSS (mackeeperapp2.mackeeper.com)'
13 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'RXSS on /landings/123.1/index.php (mackeeperapp.mackeeper.com)'
13 Jun 2020 timeline
1 ... 287 288 289 290 291 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM