Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Clario' disclosed a bug submitted by b'rumiljonov' 
b'Bypass front server restrictions and access to forbidden files and directories through X-Rewrite-Url/X-original-url header on account.mackeeper.com'
15 May 2020 timeline
b'Clario' disclosed a bug submitted by b'm_4_l_l_0_k' 
b'CSS Injection on static.mackeeper.com - Potential XSS'
15 May 2020 timeline
b'Clario' disclosed a bug submitted by b'm_4_l_l_0_k' 
b'IDOR at https://account.mackeeper.com/at/load-reports/profile/<profile_id> leaks information about devices/licenses'
15 May 2020 timeline
b'Clario' disclosed a bug submitted by b'karna__' 
b'No rate limiting on password reset page'
15 May 2020 timeline
b'Clario' disclosed a bug submitted by b'karna__' 
b'Account Takeover because of the mis-configuration on the Password Reset Page'
15 May 2020 timeline
b'Clario' disclosed a bug submitted by b'darkerhack' 
b'Information disclosure of Internal php files on [mackeeper.com/blog/api/send-event]'
15 May 2020 timeline
b'Clario' disclosed a bug submitted by b'adelin30' 
b'MK Site Cross-Site Scripting (XSS) in script context'
15 May 2020 timeline
b'Clario' disclosed a bug submitted by b'karna__' 
b'Reflected XSS on stage.mackeeper.com'
15 May 2020 timeline
b'Ruby on Rails' disclosed a bug submitted by b'jessecampos' 
b'XSS due to incomplete JS escaping'
14 May 2020 timeline
b'Palo Alto Software' disclosed a bug submitted by b'lordjerry0x01' 
b'Unauthorised access to pagespeed global admin at https://webtools.paloalto.com/'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'SSN leak due to editable slides'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'r00tpgp' 
b'Full Account Take-Over of ???????? Members via IDOR'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'mygf' 
b'Stored Xss Vulnerability on ????????'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'usamasood' 
b'[??????????] \xe2\x80\x94 Directory traversal via `/aerosol-bin/???????/display_directory_????_t.cgi`'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'usamasood' 
b'[????????] \xe2\x80\x94 XSS on `/???????_flight/images` via `advanced_val` parameter'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'yghonem' 
b'Domian Takeover in [???????]'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'rootuser' 
b'Sensitive Information Leaking Through Navy Website. [?????]'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'rootuser' 
b'Sensitive Information Leaking Through DARPA Website. [?????????]'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'yghonem' 
b'No ACL on S3 Bucket in [https://www.??????????/]'
14 May 2020 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'mohammedadam24' 
b'Application level DoS via xmlrpc.php '
14 May 2020 timeline
1 ... 307 308 309 310 311 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM