Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'MainWP' disclosed a bug submitted by b'rishail01' 
b'Stored Cross-Site Scripting (XSS) in "Add Contact" Name Field MainWP Plugin'
17 Jul 2025 timeline
b'Weblate' disclosed a bug submitted by b'micael1' 
b'exposure of personal IP address via email.'
16 Jul 2025 timeline
b'Node.js' disclosed a bug submitted by b'sharp_edged' 
b'HashDoS in V8'
15 Jul 2025 timeline
b'Node.js' disclosed a bug submitted by b'oblivionsage' 
b'Windows Device Names (CON, PRN, AUX) Bypass Path Traversal Protection in path.normalize()'
15 Jul 2025 timeline
b'HackerOne' disclosed a bug submitted by b'mrmax4o4' 
b"Banned user still has access to their deleted account via HackerOne's API using their API key"
14 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'tryhackplanet' 
b'Disk Space Exhaustion leading to a Denial of Service (DoS)'
14 Jul 2025 timeline
b'WakaTime' disclosed a bug submitted by b'ctrl_cipher' 
b'Not a Vuln: Race Condition Allows Creation of Multiple Organizations with the Same Name'
14 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'tryhackplanet' 
b'Uncontrolled File Write/Arbitrary File Creation '
13 Jul 2025 timeline
b'MainWP' disclosed a bug submitted by b'rishail01' 
b'Reflected XSS in "Client Notes" Field'
13 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'youssef111' 
b'HTTP Request Smuggling Vulnerability Analysis - cURL Security Report'
13 Jul 2025 timeline
b'Khan Academy' disclosed a bug submitted by b'a0xtrojan' 
b'Leaked reused password for a few Khan Academy users'
12 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'monkey_dee' 
b'Default Minimum TLS Version Set to TLS v1.0 (Cryptographic Weakness)'
10 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'brobagazzzx' 
b'Use-After-Free in OpenSSL Keylog Callback via SSL_get_ex_data() in libcurl'
09 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'mr_tufan' 
b'Arbitrary File Read via file:// Protocol in cURL'
09 Jul 2025 timeline
b'TikTok' disclosed a bug submitted by b'eneri' 
b'Chain Vulnerability lead to Full Control Group Live Accounts & Undeletable Creator'
08 Jul 2025 timeline
b'Ruby' disclosed a bug submitted by b'ooooooo_q' 
b'ReDoS in IPAddr'
08 Jul 2025 timeline
b'Ruby' disclosed a bug submitted by b'ooooooo_q' 
b'ReDoS in Psych'
08 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'haydradz' 
b'access notes without permission'
08 Jul 2025 timeline
b'curl' disclosed a bug submitted by b'haydradz' 
b'Disclosure of email addresses'
08 Jul 2025 timeline
b'Sony' disclosed a bug submitted by b'trapedev' 
b'Clear Authentication Deficiencies & Potential for Man-in-the-Middle Attacks'
08 Jul 2025 timeline
1 2 3 4 5 6 ... 737
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM