Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Mail.ru' disclosed a bug submitted by b'byq' 
b'[my.games] Stored XSS via untrusted bucket'
04 Jun 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'chalker' 
b'[crypto-js] Insecure entropy source - Math.random()'
04 Jun 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ryotak' 
b'[Limited bypass of #793704] Blind SSRF in Ghost CMS'
04 Jun 2020 timeline
b'Brave Software' disclosed a bug submitted by b'0xrobot' 
b'Username Information Disclosure via Json response - Using parameter number Intruder'
04 Jun 2020 timeline
b'Brave Software' disclosed a bug submitted by b'dracomalfoy' 
b'HTTP Request Smuggling'
04 Jun 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'chevonphillip' 
b'Allows any user to share their "Root" level folder by sharing "."'
03 Jun 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'christophwurst' 
b'Mail does not verify IMAP/SMTP host connected via TLS'
03 Jun 2020 timeline
b'Node.js' disclosed a bug submitted by b'fwilhelm' 
b'Node.js: TLS session reuse can lead to hostname verification bypass'
03 Jun 2020 timeline
b'Smule' disclosed a bug submitted by b'ajayshrimali' 
b'Error Page Content Spoofing or Text Injection '
03 Jun 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'covert-spectre' 
b'Code injection possible with malformed Nextcloud Talk chat commands'
02 Jun 2020 timeline
b'InnoGames' disclosed a bug submitted by b'batee5a' 
b'Unprivileged alliance member is able to recruit new members to his alliance and accepting them (xs1.grepolis.com)'
02 Jun 2020 timeline
b'Ubiquiti Inc.' disclosed a bug submitted by b'grampae' 
b'Reflected XSS in Nanostation Loco M2 - AirOS ver=6.1.7'
01 Jun 2020 timeline
b'Helium' disclosed a bug submitted by b'kdr9666' 
b'Cleartext Transmission of Sensitive Information Leads to administrator access'
30 May 2020 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'luchua' 
b'Java: CWE-532 sensitive info logging'
29 May 2020 timeline
b'Lyft' disclosed a bug submitted by b'nahamsec' 
b'My Expense Report resulted in a Server-Side Request Forgery (SSRF) on Lyft'
29 May 2020 timeline
b'Ubiquiti Inc.' disclosed a bug submitted by b'jstjohn' 
b'Firmware download/install vulnerable to CSRF'
29 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'njgadhiya' 
b'Cross-Site Request Forgery (CSRF) in my.games API'
28 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'deadmin' 
b'XSS in [community.my.games]'
28 May 2020 timeline
b'MariaDB' disclosed a bug submitted by b'lixtelnis' 
b'Path traversal in command line client'
28 May 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'zerboa' 
b'relap.io CSRF bypass on adding domain to use relap widgets '
28 May 2020 timeline
1 ... 291 292 293 294 295 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM