Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[tree-kill] RCE via insecure command concatenation (only Windows)'
04 Dec 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'spengietz' 
b'Lodash "difference" (possibly others) Function Denial of Service Through Unvalidated Input'
04 Dec 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[treekill] RCE via insecure command concatenation (only Windows)'
04 Dec 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'bl4de' 
b'`indexFile` option passed as an argument to node-server can lead to arbitrary file read'
04 Dec 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[node-df] RCE via insecure command concatenation'
04 Dec 2019 timeline
b'Grammarly' disclosed a bug submitted by b'k4r4koyun' 
b'Account takeover through the combination of cookie manipulation and XSS'
03 Dec 2019 timeline
b'HackerOne' disclosed a bug submitted by b'haxta4ok00' 
b'Account takeover via leaked session cookie'
03 Dec 2019 timeline
b'Imgur' disclosed a bug submitted by b'alishah' 
b'Password Reset Link not expiring after changing the email Leads To Account Takeover'
03 Dec 2019 timeline
b'GitLab' disclosed a bug submitted by b'rpadovani' 
b'GraphQL query "namespace" leaks data'
03 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'00utsav00' 
b'http://????/data.json showing users sensitive information via json file'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'hexdump' 
b'[Partial] SSN & [PII] exposed through iPERMs Presentation Slide.'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'usamasood' 
b'[?????] \xe2\x80\x94 DOM-based XSS on endpoint `/?s=`'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'pirateducky' 
b'Information disclousure by clicking on the link shown in http://????????/'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'PII leakage due to scrceenshot of health records'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://???'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'[CVE-2019-11510 ] Path Traversal on ???????? leads to leaked passwords, RCE, etc'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'Pulse Secure File disclosure, clear text and potential RCE'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[?????] Reflected GET XSS (/personnel.php?...&rcnum=*) with mouse action'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[????????] Boolean SQL Injection (/personnel.php?content=profile&rcnum=*)'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[??????] Reflected GET XSS (/personnel.php?..&folder=*) with mouse action'
02 Dec 2019 timeline
1 ... 337 338 339 340 341 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM