Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Nextcloud' disclosed a bug submitted by b'jaimaakali' 
b'xmlrpc.php is enabled - Nextcloud'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'nstikhomirov' 
b'[Reflected XSS] In Request URL'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'foobar7' 
b'Persistent XSS via filename in projects'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'foobar7' 
b'Talk - Leak of password-protected room name via already existent resource addition'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'christophwurst' 
b'Bypass configured 2FA provider with another provider that can be set up at login'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'michag86' 
b'Circle email-members have still access to a shared folder/file after they are removed from the circle'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'jannikg' 
b'Username and Access Token Disclousure'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'icewind1991' 
b'(Authenticated) RCE by bypassing of the .htaccess blacklist'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'hassanmahmoud' 
b'Password authentication at newsletter.nextcloud.com discloses username list'
01 Mar 2020 timeline
b'Nextcloud' disclosed a bug submitted by b'l0l1ch3ng' 
b'SSRF on local storage of iOS mobile'
01 Mar 2020 timeline
b'GlobaLeaks' disclosed a bug submitted by b'iqzer0' 
b'Since no defined tries for incorrect answer, an attacker can brute the answers and post a submission'
01 Mar 2020 timeline
b'RATELIMITED' disclosed a bug submitted by b'mazmur' 
b'Information Disclosure PHPpgAdmin'
29 Feb 2020 timeline
b'Greenhouse.io' disclosed a bug submitted by b'ajxchapman' 
b'Debug information disclosure on oauth-redirector.services.greenhouse.io'
29 Feb 2020 timeline
b'FormAssembly' disclosed a bug submitted by b'badis' 
b'scripts loader DOS vulnerability'
29 Feb 2020 timeline
b'HackerOne' disclosed a bug submitted by b'zrachessanasz' 
b'Total Paid Bounty Paid can be disclose'
28 Feb 2020 timeline
b'SEMrush' disclosed a bug submitted by b'a_d_a_m' 
b'IDOR in semrush academy'
28 Feb 2020 timeline
b'SEMrush' disclosed a bug submitted by b'ajxchapman' 
b'Ad Builder Display Ads Path Traversal'
28 Feb 2020 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mcollina' 
b'Prototype pollution in multipart parsing'
28 Feb 2020 timeline
b'Twitter' disclosed a bug submitted by b'adarsh_p' 
b'NO username used in authenthication to www.mopub.com leading to direct password submission which has unlimited submission rate.'
28 Feb 2020 timeline
b'Valve' disclosed a bug submitted by b'kohtep2010' 
b'Malformed .BMP file in Counter-Strike 1.6 may cause shellcode injection'
27 Feb 2020 timeline
1 ... 331 332 333 334 335 ... 744
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM