Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'81 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'60 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Engel & V\xc3\xb6lkers Technology GmbH' disclosed a bug submitted by b'j_m' 
b'[go3-intern.engelvoelkers.com] - Reflected XSS in /dGPS3/default.jsp'
17 Jun 2020 timeline
b'Engel & V\xc3\xb6lkers Technology GmbH' disclosed a bug submitted by b'j_m' 
b'[www.go3.engelvoelkers.com] - Reflected XSS in /dGPS3/default.jsp'
17 Jun 2020 timeline
b'Engel & V\xc3\xb6lkers Technology GmbH' disclosed a bug submitted by b'0xd0ff' 
b'XSS reflected in https://tableau.engelvoelkers.com/'
17 Jun 2020 timeline
b'Razer' disclosed a bug submitted by b's3cr3tsdn' 
b'???? OS Command Injection at https://sea-web.gold.razer.com/lab/ws-lookup via IP parameter'
17 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'neweq' 
b'Default credentials for the temporary POC site alipoc.stg.starbucks.com.cn permitted WAF bypass and RCE'
16 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'zlz' 
b'Misuse of an authentication cookie combined with a path traversal on app.starbucks.com permitted access to restricted data'
16 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'bayotop' 
b'Reflected DOM XSS on www.starbucks.co.uk'
16 Jun 2020 timeline
b'Starbucks' disclosed a bug submitted by b'bayotop' 
b'Reflected XSS on https://www.starbucks.co.uk/shop/paymentmethod/ (bypass for 227486)'
16 Jun 2020 timeline
b'Helium' disclosed a bug submitted by b'error___404' 
b'unpermitted user can change the device name of admin account'
16 Jun 2020 timeline
b'Ruby on Rails' disclosed a bug submitted by b'fletchto99' 
b'Rack parses encoded cookie names allowing an attacker to send malicious `__Host-` and `__Secure-` prefixed cookies'
16 Jun 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'd3lla' 
b'[devcert] Command Injection via insecure command formatting'
15 Jun 2020 timeline
b'Rocket.Chat' disclosed a bug submitted by b'elfiman' 
b'account takeover on 3.0.1 version'
14 Jun 2020 timeline
b'DuckDuckGo' disclosed a bug submitted by b'cujanovic' 
b'DOM XSS on duckduckgo.com search'
14 Jun 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'a9hora' 
b'Cross site scripting - XSRF Token'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'xpronator' 
b'rxss at https://mackeeper.com page not found via rid parameter'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'r3ggi-on-h1' 
b'Local Privilege escalation to root via XPC'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'jair' 
b'Affiliates - Session Fixation'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'Open Redirect at https://store.mackeeper.com/767/cookie via redirectto parameter'
14 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'RXSS on landings/land/3/ron_clean_17_app3_alerts/index.php (mackeeperapp3.mackeeper.com)'
13 Jun 2020 timeline
b'Clario' disclosed a bug submitted by b'sec0ndw0lf' 
b'RXSS on unsubscribe feature (affiliates.kromtech.com)'
13 Jun 2020 timeline
1 ... 290 291 292 293 294 ... 733
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM