Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'BCM Messenger' disclosed a bug submitted by b'namunah' 
b'Account Takeover with old password and login QR'
12 Mar 2020 timeline
b'Revive Adserver' disclosed a bug submitted by b'hoangn144' 
b'bypass old password with array in /admin/account-user-email.php'
12 Mar 2020 timeline
b'Revive Adserver' disclosed a bug submitted by b'hoangn144' 
b'Open redirection bypass in /www/admin/campaign-modify.php'
12 Mar 2020 timeline
b'HackerOne' disclosed a bug submitted by b'tolo7010' 
b'Disabled account can still use GraphQL endpoint'
12 Mar 2020 timeline
b'Slack' disclosed a bug submitted by b'defparam' 
b'Mass account takeovers using HTTP Request Smuggling on https://slackb.com/ to steal session cookies'
12 Mar 2020 timeline
b'Slack' disclosed a bug submitted by b'sandrogauci' 
b'Slack DTLS uses a private key that is in the public domain, which may lead to SRTP stream hijack'
12 Mar 2020 timeline
b'Slack' disclosed a bug submitted by b'sandrogauci' 
b'TURN server allows TCP and UDP proxying to internal network, localhost and meta-data services'
12 Mar 2020 timeline
b'Monero' disclosed a bug submitted by b'consistent-dream' 
b'Monero wallet password change is confirmed when not matching'
11 Mar 2020 timeline
b'Monero' disclosed a bug submitted by b'ahook' 
b'Potential linkage of public/private (anonymous) node addresses'
11 Mar 2020 timeline
b'HackerOne' disclosed a bug submitted by b'jobert' 
b'HackerOne Pentesters can access any structured scope object through GraphQL node interface'
11 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b'0x496' 
b'Reflected XSS on molpay.com with cloudflare bypass'
11 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b's3cr3tsdn' 
b'Insecure Processing of XML leads to Denial of Service through Billion Laughs Attack'
11 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b'l00ph0le' 
b'Store Cross-Site Scripting - www.razer.ru'
11 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b't3ngu' 
b' Information disclosure at http://sea-s2s.molthailand.com/status.php'
11 Mar 2020 timeline
b'Razer' disclosed a bug submitted by b'nnez' 
b'Leftover back-end system on www.zest.co.th allows an unauthorized attacker to generate Razer Gold Pin for free'
11 Mar 2020 timeline
b'Starbucks' disclosed a bug submitted by b'iampuky' 
b'Korea - LFI via path traversal at https://msr.istarbucks.co.kr:6443/appif/'
10 Mar 2020 timeline
b'Shopify' disclosed a bug submitted by b'fisher' 
b'H1514 Deanonymizing Exchange Marketplace private listings '
10 Mar 2020 timeline
b'Starbucks' disclosed a bug submitted by b'l00ph0le' 
b'Hong Kong - Open Redirect on card.starbucks.com.hk'
10 Mar 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'asdqwedev' 
b'Blind SQL Injection on news.mail.ru'
10 Mar 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'godofdarkness_msf' 
b'Account takeover at geekbrains.ru'
10 Mar 2020 timeline
1 ... 313 314 315 316 317 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM