Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'HackerOne' disclosed a bug submitted by b'noob_but_cut3' 
b'TOTP Authenticator implementation Accepts Expired Codes'
11 Jul 2024 timeline
b'Rocket.Chat' disclosed a bug submitted by b'itssixtynein' 
b'Rocket.Chat Desktop client fails to open browser on 3rd party external actions from PDF documents'
11 Jul 2024 timeline
b'LY Corporation' disclosed a bug submitted by b'yinmo' 
b'File sizes may be manipulated into negative numbers when uploading'
10 Jul 2024 timeline
b'LY Corporation' disclosed a bug submitted by b'nightm4re' 
b'XSS on LINE CAREERS'
10 Jul 2024 timeline
b'Basecamp' disclosed a bug submitted by b'fr4via' 
b"Path traversal in deeplink query parameter can expose any user's private info to a public directory (one click)"
09 Jul 2024 timeline
b'Basecamp' disclosed a bug submitted by b'fr4via' 
b'Navgraph confusion allows any 3p app to send and read requests from the server at app.hey.com'
09 Jul 2024 timeline
b'Node.js' disclosed a bug submitted by b'haxatron1' 
b'fs.lstat bypasses permission model'
09 Jul 2024 timeline
b'Node.js' disclosed a bug submitted by b'tianst' 
b'Bypass incomplete fix of CVE-2024-27980'
09 Jul 2024 timeline
b'Node.js' disclosed a bug submitted by b'4xpl0r3r' 
b'fs.fchown/fchmod bypasses permission model'
09 Jul 2024 timeline
b'Node.js' disclosed a bug submitted by b'dittyroma' 
b'Bypass network import restriction via data URL'
08 Jul 2024 timeline
b'Flickr' disclosed a bug submitted by b'fr4via' 
b'Incorrect Deep-link validation leading to unresponsive application and device'
06 Jul 2024 timeline
b'Flickr' disclosed a bug submitted by b'0xcyborg' 
b'IDOR may allow access to non-public photos'
06 Jul 2024 timeline
b'Automattic' disclosed a bug submitted by b'xurizaemon0' 
b'Authentication & Registration Bypass in Newspack Extended Access'
05 Jul 2024 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'devme4f' 
b'CVE-2024-34750 Apache Tomcat DoS vulnerability in HTTP/2 connector'
05 Jul 2024 timeline
b'TikTok' disclosed a bug submitted by b'zhyar_11011' 
b'Authentication Bypass on TikTok Seller Signup Process Allows Account Creation Without Phone Verification'
03 Jul 2024 timeline
b'Booking.com' disclosed a bug submitted by b'tuantv89' 
b'Default Admin Account lead to full access control at https://desk-demo.fareharbor.engineering'
03 Jul 2024 timeline
b'Ruby' disclosed a bug submitted by b'ooooooo_q' 
b'RCE by parsing `.rdoc_options` in RDoc'
03 Jul 2024 timeline
b'inDrive' disclosed a bug submitted by b'bugsv2' 
b'Unlimited fake rate to the passenger in city to city, Affected endpoint `/api/v1/reviews/ride/<ID>/driver`'
02 Jul 2024 timeline
b'inDrive' disclosed a bug submitted by b'zxwo' 
b'Reflected XSS of media.indrive.com'
02 Jul 2024 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'noentry' 
b'CVE-2024-32760 in nginx'
01 Jul 2024 timeline
1 ... 38 39 40 41 42 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM