Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'The Internet' disclosed a bug submitted by b'geeknik' 
b'CVE-2017-10965: Null pointer dereference in Irssi <1.0.4 '
04 Oct 2019 timeline
b'The Internet' disclosed a bug submitted by b'geeknik' 
b'CVE-2017-5969: libxml2 when used in recover mode, allows remote attackers to cause a denial of service (NULL pointer dereference)'
04 Oct 2019 timeline
b'The Internet' disclosed a bug submitted by b'geeknik' 
b'Denial of service in libxml2, using malicious lzma file to consume available system memory'
04 Oct 2019 timeline
b'Rockstar Games' disclosed a bug submitted by b'geeknik' 
b'full path disclosure on www.rockstargames.com via apache filename brute forcing'
04 Oct 2019 timeline
b'Tor' disclosed a bug submitted by b'geeknik' 
b'Use of unitialized value in token_check_object (src/or/parsecommon.c:224)'
04 Oct 2019 timeline
b'PHP (IBB)' disclosed a bug submitted by b'geeknik' 
b'Use after free with assign by ref to overloaded objects'
04 Oct 2019 timeline
b'The Internet' disclosed a bug submitted by b'geeknik' 
b'pngcrush double-free/segfault could result in DoS (CVE-2015-7700)'
04 Oct 2019 timeline
b'The Internet' disclosed a bug submitted by b'geeknik' 
b'pngcrush_measure_idat() off-by-one error (CVE-2015-2158)'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'karimrahal' 
b'[REMOTE] Full Account Takeover At https://??????????????/CAS/'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'twicedi' 
b'Path traversal on ????????'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'jin' 
b'XXE in DoD website that may lead to RCE'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'cdl' 
b'IDOR on DoD Website exposes FTP users and passes linked to all accounts!'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'manoelt' 
b'Remote Code Execution (RCE) in a DoD website'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'lfb' 
b' SQL injections'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'SQL injection on the https://????/'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'SQL Injection in the get_publications.php on the https://?????'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'[Critical] Full local fylesystem access (LFI/LFD) as admin via Path Traversal in the misconfigured Java servlet on the https://???/'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'nahamsec' 
b'LFI with potential to RCE on ?????? using CVE-2019-3396'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'sp1d3rs' 
b'[Critical] Possibility to takeover any user account #2 without interaction on the https://??????????'
04 Oct 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'deputy' 
b'?????? Authenticated User Data Disclosure'
04 Oct 2019 timeline
1 ... 371 372 373 374 375 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM