Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'PuTTY (European Commission - D' disclosed a bug submitted by b'geeknik' 
b'heap-use-after-free (READ of size 8) in main()'
03 Nov 2019 timeline
b'PuTTY (European Commission - D' disclosed a bug submitted by b'geeknik' 
b" Assertion `len == 1' failed, process aborted while streaming ouput from remote server"
03 Nov 2019 timeline
b'PuTTY (European Commission - D' disclosed a bug submitted by b'geeknik' 
b"Assertion `col >= 0 && col < line->cols' failed, process aborted while streaming ouput from remote server"
03 Nov 2019 timeline
b'WordPress' disclosed a bug submitted by b'geeknik' 
b'plugins.trac.wordpress.org likely vulnerable to Cross Site Tracing (xst), TRACE HTTP method should be disabled'
03 Nov 2019 timeline
b'Dropbox' disclosed a bug submitted by b'geeknik' 
b'avrecode: global-buffer-overflow in get_neighbor()'
03 Nov 2019 timeline
b'PHP (IBB)' disclosed a bug submitted by b'fms' 
b'wddx_deserialize use-after-free'
03 Nov 2019 timeline
b'New Relic' disclosed a bug submitted by b'dangkhai' 
b'[Bypass] Code injection to open redirect in https://insights.newrelic.com/accounts/2521182/dashboards/1026927'
02 Nov 2019 timeline
b'New Relic' disclosed a bug submitted by b'specialagent' 
b'The impossibility of inclusion of the trial (BROWSER)'
02 Nov 2019 timeline
b'Shopify' disclosed a bug submitted by b'cablej' 
b'H1514 Stored XSS on Wholesale sales channel allows cross-organization data leakage'
01 Nov 2019 timeline
b'SEMrush' disclosed a bug submitted by b'dangkhai' 
b'Code injection in https://www.semrush.com'
01 Nov 2019 timeline
b'curl' disclosed a bug submitted by b'b2x2r' 
b'Active Mixed Content over HTTPS'
01 Nov 2019 timeline
b'curl' disclosed a bug submitted by b'b2x2r' 
b'Insecure Frame (External)'
01 Nov 2019 timeline
b'Fortmatic Inc.' disclosed a bug submitted by b'mr_r0w07' 
b'CSRF in generating developer api_key'
01 Nov 2019 timeline
b'Twitter' disclosed a bug submitted by b'slickrockweb' 
b'Viral Direct Message Clickjacking via link truncation leading to capture of both Google credentials & installation of malicious 3rd party Twitter App'
31 Oct 2019 timeline
b'Rocket.Chat' disclosed a bug submitted by b'w2w' 
b'Open redirect open.rocket.chat/file-upload/ID/filename.svg'
31 Oct 2019 timeline
b'PHP (IBB)' disclosed a bug submitted by b'fms' 
b'wddx_deserialize allows illegal memory access'
31 Oct 2019 timeline
b'PHP (IBB)' disclosed a bug submitted by b'fms' 
b'wddx_deserialize null dereference'
31 Oct 2019 timeline
b'PHP (IBB)' disclosed a bug submitted by b'fms' 
b'pass2_no_dither out-of-bounds access'
31 Oct 2019 timeline
b'PHP (IBB)' disclosed a bug submitted by b'fms' 
b'gdImageTrueColorToPaletteBody allows arbitrary write/read access'
31 Oct 2019 timeline
b'PHP (IBB)' disclosed a bug submitted by b'fms' 
b'select_colors write out-of-bounds'
31 Oct 2019 timeline
1 ... 360 361 362 363 364 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM