Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'84 
b'linkks'75 
b'jobert'70 
b'nyymi'64 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'OX App Suite' disclosed a bug submitted by b'secator' 
b'[XSS] RSS Feed Widget'
16 Aug 2019 timeline
b'Zomato' disclosed a bug submitted by b'sjvino' 
b'Able to manipulate order amount by removing cancellation amount and cause financial impact'
16 Aug 2019 timeline
b'Twitter' disclosed a bug submitted by b'muhammad139' 
b'Github Token Leaked publicly for https://github.com/mopub'
15 Aug 2019 timeline
b'Starbucks' disclosed a bug submitted by b'mindtrick' 
b'Subdomain takeover of d02-1-ag.productioncontroller.starbucks.com'
15 Aug 2019 timeline
b'Grammarly' disclosed a bug submitted by b'chackmate' 
b'Can register any mobile number in MFA without current code.'
15 Aug 2019 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'rootaccess' 
b'SQL Injection vulnerability located at ????????'
15 Aug 2019 timeline
b'OX App Suite' disclosed a bug submitted by b'tbehroz' 
b'Stored XSS '
15 Aug 2019 timeline
b'OX App Suite' disclosed a bug submitted by b'zee_shan' 
b'Another window.opener issue'
15 Aug 2019 timeline
b'OX App Suite' disclosed a bug submitted by b'zee_shan' 
b'Another Stored XSS in mail app using Drive app'
15 Aug 2019 timeline
b'OX App Suite' disclosed a bug submitted by b'zee_shan' 
b'Stored XSS in mail app'
15 Aug 2019 timeline
b'Vanilla' disclosed a bug submitted by b'black_b' 
b'xss reflected in littleguy.vanillastaging.com'
14 Aug 2019 timeline
b'Algolia' disclosed a bug submitted by b'badcracker' 
b'subdomain take over at recommendation.algolia.com'
14 Aug 2019 timeline
b'Shopify' disclosed a bug submitted by b'tems' 
b'Bypass of biometrics security functionality is possible in Android application (com.shopify.mobile)'
14 Aug 2019 timeline
b'Informatica' disclosed a bug submitted by b'0ang3el' 
b'accounts.informatica.com - RCE due to exposed Groovy console'
14 Aug 2019 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'chalker' 
b'Yarn transfers npm credentials over unencrypted http connection'
14 Aug 2019 timeline
b'Maker Ecosystem Growth Holding' disclosed a bug submitted by b'lucash-dev' 
b'Earn free DAI interest (inflation) through instant CDP+DSR in one tx'
12 Aug 2019 timeline
b'Grammarly' disclosed a bug submitted by b'linkworld' 
b'\xe2\x80\x9cemail\xe2\x80\x9d MFA mode allows bypassing MFA from victim\xe2\x80\x99s device when the device trust is not expired'
12 Aug 2019 timeline
b'Lob' disclosed a bug submitted by b'common' 
b'No Access Control'
12 Aug 2019 timeline
b'Brave Software' disclosed a bug submitted by b'padpao' 
b'Link obfuscation bug'
12 Aug 2019 timeline
b'Nextcloud' disclosed a bug submitted by b'leonklingele' 
b'Group admins can remove arbitrary data from "data" directory (including admin data)'
12 Aug 2019 timeline
1 ... 385 386 387 388 389 ... 741
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM