Top10 publishers:
bobrov117 
geeknik79 
linkks75 
sp1d3rs68 
jobert66 
someonenobbd60 
jon_bottarini49 
netfuzzer48 
haxta4ok0048 
ryat47 

the unofficial HackerOne disclosure timeline.

X
Shopify disclosed a bug submitted by xenx 
store internal email disclosed through shopify-data-exporter
15 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by cdl 
[hta3] Remote Code Execution on https:// via improper access control to SCORM Zip upload/import
15 Sep 2022 timeline
Linktree disclosed a bug submitted by bug_vs_me 
No validation to Image upload user can upload ( php APK zip files and can be used as storage purpose)
15 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by shreky 
STORED XSS in /nlc/login.aspx via "edit" GET parameter through markdown editor [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by malcolmx 
time based SQL injection at [https://] [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by malcolmx 
SQL injection at [] [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by malcolmx 
SQL injection at [https://] [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by codeprivate 
SSRF in Functional Administrative Support Tool pdf generator () [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by ahmed0x0mahmoud 
an internel important paths disclosure [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by sudi 
Full read SSRF at [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by byteone 
Unprotected and Test site API Exposes Documents, Credentials, and Emails in Proposal System
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by 0xr3dhunt 
SSRF ACCESS AWS METADATA -
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by bate5a 
IDOR Lead To VIEW & DELETE & Create api_key [HtUS]
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by shuvam321 
XSS DUE TO CVE-2022-38463 in https://
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by thpless 
springboot actuator is leaking internals at
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by 0x45 
Directory Traversal at
14 Sep 2022 timeline
Meredith disclosed a bug submitted by error201 
Shop - Reflected XSS With Clickjacking Leads to Steal User's Cookie In Two Domain
14 Sep 2022 timeline
Dropbox disclosed a bug submitted by fransrosen 
Abuse cookie-modification, toast HTML and expired domain in CSP-form-action replacing login-page at www.dropbox.com/login to submit creds externally
14 Sep 2022 timeline
U.S. Dept Of Defense disclosed a bug submitted by fdeleite 
Reflected XSS []
14 Sep 2022 timeline
TikTok disclosed a bug submitted by f_m 
CSRF in Changing User Verification Email
13 Sep 2022 timeline
1 2 3 4 5 6 ... 628
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM