Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jin' 
b'XXE in DoD website that may lead to RCE'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'IDOR on DoD Website exposes FTP users and passes linked to all accounts!'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'manoelt' 
b'Remote Code Execution (RCE) in a DoD website'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'lfb' 
b' SQL injections'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'SQL injection on the https://????/'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'SQL Injection in the get_publications.php on the https://?????'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'[Critical] Full local fylesystem access (LFI/LFD) as admin via Path Traversal in the misconfigured Java servlet on the https://???/'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nahamsec' 
b'LFI with potential to RCE on ?????? using CVE-2019-3396'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'[Critical] Possibility to takeover any user account #2 without interaction on the https://??????????'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'deputy' 
b'?????? Authenticated User Data Disclosure'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'warsong' 
b'https://????????? Vulnerable to CVE-2018-0296 Cisco ASA Path Traversal Authentication Bypass'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'Root Remote Code Execution on https://???'
04 Oct 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'phra' 
b'Server Side JavaScript Code Injection'
03 Oct 2019 timeline
b'Ruby' disclosed a bug submitted by b'chrisseaton' 
b'Ruby is shipping a vulnerable jQuery'
03 Oct 2019 timeline
b'Railto LLC' disclosed a bug submitted by b'kira_deathnote' 
b'Administrator access to staging.railto.com'
03 Oct 2019 timeline
b'Twitter' disclosed a bug submitted by b'protostar0' 
b'login csrf in analytics.mopub.com'
02 Oct 2019 timeline
b'Twitter' disclosed a bug submitted by b'updatelap' 
b'Reports Modal in app.mopub.com Disclose by any user'
02 Oct 2019 timeline
b'GitLab' disclosed a bug submitted by b'petee' 
b'Privilege escalation due to insecure use of logrotate'
01 Oct 2019 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'manshum12' 
b'Stealing Users OAuth Tokens through redirect_uri parameter'
01 Oct 2019 timeline
b'Maker Ecosystem Growth Holding' disclosed a bug submitted by b'lucash-dev' 
b'Steal ALL collateral during liquidation by exploiting lack of validation in `flip.kick`'
01 Oct 2019 timeline
1 ... 363 364 365 366 367 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM