Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'67 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Starbucks' disclosed a bug submitted by b'cdl' 
b'Cross-Site Scripting (XSS) on www.starbucks.com | .co.uk login pages'
30 Jun 2020 timeline
b'Ubiquiti Inc.' disclosed a bug submitted by b'murmus' 
b'Local File Disclosure (+XSS+CSRF) in AirOS 6.2.0 devices'
30 Jun 2020 timeline
b'Ubiquiti Inc.' disclosed a bug submitted by b'murmus' 
b'RCE in AirOS 6.2.0 Devices with CSRF bypass'
30 Jun 2020 timeline
b'Razer' disclosed a bug submitted by b's3cr3tsdn' 
b'[api.easy2pay.co] SQL Injection at fortumo via TransID parameter [Bypassing Signature Validation????]'
30 Jun 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'what_web' 
b'[www.stripo.email] You can bypass the speed limit by changing the IP.'
30 Jun 2020 timeline
b'Stripo Inc' disclosed a bug submitted by b'x25s' 
b'SSRF in my.stripo.email'
30 Jun 2020 timeline
b'Maximum' disclosed a bug submitted by b'what_web' 
b'[www.werkenbijbakertilly.nl] Information Disclosure'
30 Jun 2020 timeline
b'Courier' disclosed a bug submitted by b'vaalici' 
b"disable test send feature if user's email address isn't verified"
30 Jun 2020 timeline
b'Helium' disclosed a bug submitted by b'chipped' 
b'Read-only user can delete higher privileged members using open DELETE /api/memberships/<membershipID> endpoint'
29 Jun 2020 timeline
b'Central Security Project' disclosed a bug submitted by b'longofo' 
b'OS Command Injection in Nexus Repository Manager 2.x -- Bypass for Nexus Repository Manage 2.14.15-01 Command Injection fix'
29 Jun 2020 timeline
b'NordVPN' disclosed a bug submitted by b'3viltwin' 
b'Misconfigured web directory allows to retrieve public proxy list'
29 Jun 2020 timeline
b'WordPress' disclosed a bug submitted by b'binit' 
b'Authenticated Stored Cross-site Scripting in bbPress'
29 Jun 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'rainbow_json' 
b'[account.mail.ru] XSS-?????????? ? ????? ???????????'
29 Jun 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'organdonor' 
b'MySQL username and password leaked on [2017.russianaicup.ru]'
29 Jun 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'whitespots' 
b'Reflected XSS'
29 Jun 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'rumiljonov' 
b'SSRF in filtering on relap.io'
29 Jun 2020 timeline
b'Vanilla' disclosed a bug submitted by b'flex0geek' 
b'Spoofing the redirect process using RTLO'
28 Jun 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mahmoud0x00' 
b'[Uppy] Internal Server side request forgery (bypass of #786956)'
28 Jun 2020 timeline
b'Visma Public' disclosed a bug submitted by b'bayesian_hacker' 
b'SXSS using unsanitized `customer no` in eaccountingprinting.stage.vismaonline.com'
28 Jun 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'ahihi' 
b'bunyan - RCE via insecure command formatting'
27 Jun 2020 timeline
1 ... 303 304 305 306 307 ... 752
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM