Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Omise' disclosed a bug submitted by b'rioncool22' 
b'Signup with any email and enable 2FA without verifying email'
23 Apr 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'what_web' 
b'[www.stripo.email] You can override the speed limit by adding the X-Forwarded-For header.'
23 Apr 2020 timeline
b'Ruby' disclosed a bug submitted by b'jeremyevans' 
b'Variant of CVE-2013-0269 (Denial of Service and Unsafe Object Creation Vulnerability in JSON)'
23 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'empty-jack' 
b'[v7lk.relap.io] Sending arbitrary emails to any user'
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'ksapphire' 
b'Mail.Ru Top - Website Counter Bruteforcing'
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'act1on3' 
b'[c-api.city-mobil.ru] Client authentication bypass leads to information disclosure'
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'risinghunter' 
b'mailgun subdomain takeover on "email.mail.geekbrains.ru"'
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'iframe' 
b'[staging.tarantool.org] Github Pages Subdomain-take-over '
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'elmahdi' 
b'Information Disclosure [ https://curious.ru/api/submissions ]'
22 Apr 2020 timeline
b'NordVPN' disclosed a bug submitted by b'skyplabs' 
b"The Linux binaries (nordvpn and nordvpnd) don't use PIE/ASLR"
22 Apr 2020 timeline
b'HackerOne' disclosed a bug submitted by b'd4rk_g1rl' 
b"An invite-only's program submission state is accessible to users no longer part of the program"
21 Apr 2020 timeline
b'Starbucks' disclosed a bug submitted by b'dekster' 
b'India - OTP bypass on Phone number verification for account creation'
21 Apr 2020 timeline
b'Starbucks' disclosed a bug submitted by b'l00ph0le' 
b'Open Redirect on Greater Asia domains'
21 Apr 2020 timeline
b'Razer' disclosed a bug submitted by b'xorcx' 
b'RXSS at https://api.easy2pay.co/inquiry.php via txid parameter.'
21 Apr 2020 timeline
b'Shopify' disclosed a bug submitted by b'sreeju_kc' 
b'None permission staff member can identify installed application and products attached to it'
21 Apr 2020 timeline
b'Staging.every.org' disclosed a bug submitted by b'ech0bh' 
b'Private account causes displayed through API'
21 Apr 2020 timeline
b'Informatica' disclosed a bug submitted by b'moebius' 
b'XXE through injection of a payload in the XMP metadata of a JPEG file'
21 Apr 2020 timeline
b'Insolar' disclosed a bug submitted by b'sahubawa' 
b'MAIL SPOOFING'
21 Apr 2020 timeline
b'Maximum' disclosed a bug submitted by b'iam1here' 
b'I can subscribe and unsubscribe any user with the same token for as many times as i want'
21 Apr 2020 timeline
b'LINE' disclosed a bug submitted by b'derision' 
b'Reflected XSS in OAUTH2 login flow '
21 Apr 2020 timeline
1 ... 303 304 305 306 307 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM