Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Twitter' disclosed a bug submitted by b'mr_edwards' 
b'Wrong Interpretation of URL encoded characters, showing different punny code leads to redirection on different domain'
26 Aug 2019 timeline
b'WordPress' disclosed a bug submitted by b'gnux' 
b"Reflected XSS on https://make.wordpress.org via 'channel' parameter"
26 Aug 2019 timeline
b'Notepad++' disclosed a bug submitted by b'ammm' 
b'Stack overflow affecting "ext" field on stylers.xml configuration file'
25 Aug 2019 timeline
b'Notepad++' disclosed a bug submitted by b'ammm' 
b'Stack overflow in XML Parsing'
25 Aug 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'toannc123' 
b'[statichttpserver] List any file in the folder by using path traversal.'
25 Aug 2019 timeline
b'Khan Academy' disclosed a bug submitted by b'katsuragicsl' 
b'Subdomain takeover on healthyhackathon.khanacademy.org and hackweek.khanacademy.org'
25 Aug 2019 timeline
b'ICQ' disclosed a bug submitted by b'superboyxxx' 
b'web.icq.com XSS in chat message via contact info'
24 Aug 2019 timeline
b'Vimeo' disclosed a bug submitted by b'dphoeniixx' 
b'Reflected File Download (RFD) in download video'
23 Aug 2019 timeline
b'Ubiquiti Networks' disclosed a bug submitted by b'smartnoob' 
b'Catch mails sent to an SMTP Server over SSL using an Evil SMTP Server'
22 Aug 2019 timeline
b'Equifax' disclosed a bug submitted by b'mohanaddobal' 
b'Important information leaked on Github'
22 Aug 2019 timeline
b'GitLab' disclosed a bug submitted by b'8ayac' 
b'All functions that allow users to specify color code are vulnerable to ReDoS'
21 Aug 2019 timeline
b'Trustpilot' disclosed a bug submitted by b'qwerty01' 
b'IDOR in sending support email upon Verifying user business domain'
21 Aug 2019 timeline
b'OLX' disclosed a bug submitted by b'nullcod3r' 
b'SQL Injection on https://www.olx.co.id'
20 Aug 2019 timeline
b'Central Security Project' disclosed a bug submitted by b'cbagdude' 
b'OS Command Injection in Nexus Repository Manager 2.x'
20 Aug 2019 timeline
b'WakaTime' disclosed a bug submitted by b'tkd8' 
b'bypass csrftoken at profile name.'
20 Aug 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'inkz' 
b'[larvitbase-api] Unintended Require'
20 Aug 2019 timeline
b'TTS Bug Bounty' disclosed a bug submitted by b'rooghz' 
b'xmlrpc.php file enabled - data.gov'
19 Aug 2019 timeline
b'Grammarly' disclosed a bug submitted by b'brdoors3' 
b'Previously created sessions continue being valid after MFA activation'
19 Aug 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'funt0m' 
b'Full Path Disclosure'
19 Aug 2019 timeline
b'Mail.ru' disclosed a bug submitted by b'theappsec' 
b'[e.mail.ru] Stored xss in Mpop cookie'
19 Aug 2019 timeline
1 ... 372 373 374 375 376 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM