Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Mail.ru' disclosed a bug submitted by b'act1on3' 
b'[c-api.city-mobil.ru] Client authentication bypass leads to information disclosure'
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'risinghunter' 
b'mailgun subdomain takeover on "email.mail.geekbrains.ru"'
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'iframe' 
b'[staging.tarantool.org] Github Pages Subdomain-take-over '
22 Apr 2020 timeline
b'Mail.ru' disclosed a bug submitted by b'elmahdi' 
b'Information Disclosure [ https://curious.ru/api/submissions ]'
22 Apr 2020 timeline
b'NordVPN' disclosed a bug submitted by b'skyplabs' 
b"The Linux binaries (nordvpn and nordvpnd) don't use PIE/ASLR"
22 Apr 2020 timeline
b'HackerOne' disclosed a bug submitted by b'd4rk_g1rl' 
b"An invite-only's program submission state is accessible to users no longer part of the program"
21 Apr 2020 timeline
b'Starbucks' disclosed a bug submitted by b'dekster' 
b'India - OTP bypass on Phone number verification for account creation'
21 Apr 2020 timeline
b'Starbucks' disclosed a bug submitted by b'l00ph0le' 
b'Open Redirect on Greater Asia domains'
21 Apr 2020 timeline
b'Razer' disclosed a bug submitted by b'xorcx' 
b'RXSS at https://api.easy2pay.co/inquiry.php via txid parameter.'
21 Apr 2020 timeline
b'Shopify' disclosed a bug submitted by b'sreeju_kc' 
b'None permission staff member can identify installed application and products attached to it'
21 Apr 2020 timeline
b'Staging.every.org' disclosed a bug submitted by b'ech0bh' 
b'Private account causes displayed through API'
21 Apr 2020 timeline
b'Informatica' disclosed a bug submitted by b'moebius' 
b'XXE through injection of a payload in the XMP metadata of a JPEG file'
21 Apr 2020 timeline
b'Insolar' disclosed a bug submitted by b'sahubawa' 
b'MAIL SPOOFING'
21 Apr 2020 timeline
b'Maximum' disclosed a bug submitted by b'iam1here' 
b'I can subscribe and unsubscribe any user with the same token for as many times as i want'
21 Apr 2020 timeline
b'LINE' disclosed a bug submitted by b'derision' 
b'Reflected XSS in OAUTH2 login flow '
21 Apr 2020 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'kyprizel' 
b'Initial websocket support for Javascript (SockJS)'
20 Apr 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'hitman_47' 
b'IDOR allows me to mark devices of another user for remote wipe out'
19 Apr 2020 timeline
b'Palo Alto Software' disclosed a bug submitted by b'seqrity' 
b'Stored XSS on upload files leads to steal cookie'
18 Apr 2020 timeline
b'GitLab' disclosed a bug submitted by b'mclaren650sspider' 
b'Server Side Request Forgery mitigation bypass'
18 Apr 2020 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'ulldma' 
b'Java/CWE-036: Calling openStream on URLs created from remote source can lead to file disclosure'
17 Apr 2020 timeline
1 ... 315 316 317 318 319 ... 742
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM