Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Valve' disclosed a bug submitted by b'nyancat0131' 
b'Malformed playlist.txt in GoldSrc games leads to Access Violation & arbitrary code execution'
17 Sep 2019 timeline
b'MyCrypto' disclosed a bug submitted by b'zeroxyele' 
b'The twitter accounts are linked on page but unclaimed.'
17 Sep 2019 timeline
b'ICQ' disclosed a bug submitted by b'metnew' 
b'ICQ for macOS: lack of `com.apple.quarantine` meta-attribute on downloaded files leads to GateKeeper/Quarantine bypass for downloaded executables'
17 Sep 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'elmahdi' 
b'Xss Reflected On spgw.terrhq.ru [ url ]'
16 Sep 2019 timeline
b'Keybase' disclosed a bug submitted by b'metnew' 
b'Keybase client: downloaded executables lack "com.apple.quarantine" meta-attribute [macOS]'
16 Sep 2019 timeline
b'WordPress' disclosed a bug submitted by b'flimm' 
b'antispambot does not always escape <, >, &, " and \''
16 Sep 2019 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'skykn0t' 
b'Clicking "http://burp" hyperlink on FireFox CA Installation guide redirects to "burp.com" (unclaimed website).'
16 Sep 2019 timeline
b'Shopify' disclosed a bug submitted by b'wxy7174' 
b'?????? DOM XSS via Shopify.API.remoteRedirect'
15 Sep 2019 timeline
b'Slack' disclosed a bug submitted by b'metnew' 
b'User-assisted RCE in Slack for macOS (from official site) due to improper quarantine meta-attribute handling for downloaded files'
14 Sep 2019 timeline
b'Maker Ecosystem Growth Holding' disclosed a bug submitted by b'nitrozeus0x01' 
b'.git file accessible'
13 Sep 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'lightangel1412' 
b'[http_server] Stored XSS in the filename when directories listing'
13 Sep 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'garumpage' 
b'gitlabhook OS Command Injection'
13 Sep 2019 timeline
b'The Internet' disclosed a bug submitted by b'guido' 
b'ZeroMQ libzmq remote code execution'
12 Sep 2019 timeline
b'Brave Software' disclosed a bug submitted by b'metnew' 
b'Lack of quarantine meta-attribute for downloaded files leads to GateKeeper bypass'
12 Sep 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'niwasaki' 
b'JSONP hijacking'
11 Sep 2019 timeline
b'Shopify' disclosed a bug submitted by b'ashketchum' 
b'XSS while logging using Google'
11 Sep 2019 timeline
b'QIWI' disclosed a bug submitted by b'bobrov' 
b'[p2p.qiwi.com] nginx alias traversal'
11 Sep 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'iframe' 
b'Bash History file log'
11 Sep 2019 timeline
b'Apache httpd (IBB)' disclosed a bug submitted by b'real' 
b'Apache HTTP [2.4.17-2.4.38] Local Root Privilege Escalation'
11 Sep 2019 timeline
b'Ed' disclosed a bug submitted by b'magic_spell' 
b'Domain takeover on http://doesfranshaveashell.com/ due to expiration'
11 Sep 2019 timeline
1 ... 367 368 369 370 371 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM