Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Node.js third-party modules' disclosed a bug submitted by b'bl4de' 
b'`indexFile` option passed as an argument to node-server can lead to arbitrary file read'
04 Dec 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'mik317' 
b'[node-df] RCE via insecure command concatenation'
04 Dec 2019 timeline
b'Grammarly' disclosed a bug submitted by b'k4r4koyun' 
b'Account takeover through the combination of cookie manipulation and XSS'
03 Dec 2019 timeline
b'HackerOne' disclosed a bug submitted by b'haxta4ok00' 
b'Account takeover via leaked session cookie'
03 Dec 2019 timeline
b'Imgur' disclosed a bug submitted by b'alishah' 
b'Password Reset Link not expiring after changing the email Leads To Account Takeover'
03 Dec 2019 timeline
b'GitLab' disclosed a bug submitted by b'rpadovani' 
b'GraphQL query "namespace" leaks data'
03 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'00utsav00' 
b'http://????/data.json showing users sensitive information via json file'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'hexdump' 
b'[Partial] SSN & [PII] exposed through iPERMs Presentation Slide.'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'usamasood' 
b'[?????] \xe2\x80\x94 DOM-based XSS on endpoint `/?s=`'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'pirateducky' 
b'Information disclousure by clicking on the link shown in http://????????/'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'PII leakage due to scrceenshot of health records'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://???'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'[CVE-2019-11510 ] Path Traversal on ???????? leads to leaked passwords, RCE, etc'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'Pulse Secure File disclosure, clear text and potential RCE'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[?????] Reflected GET XSS (/personnel.php?...&rcnum=*) with mouse action'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[????????] Boolean SQL Injection (/personnel.php?content=profile&rcnum=*)'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[??????] Reflected GET XSS (/personnel.php?..&folder=*) with mouse action'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jarvis7' 
b'[???????] Reflected GET XSS (/mission.php?...&missionDate=*)'
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'?????????? bruteforceable RIC Codes allowing information on contracts '
02 Dec 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'alyssa_herrera' 
b'Email PII disclosure due to Insecure Password Reset field'
02 Dec 2019 timeline
1 ... 345 346 347 348 349 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM