Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'83 
b'linkks'75 
b'jobert'70 
b'nyymi'62 
b'someonenobbd'62 
b'ooooooo_q'54 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'ExpressionEngine' disclosed a bug submitted by b'd0bby' 
b'Comment/channel unsubscribe GET CSRF'
28 May 2024 timeline
b'ExpressionEngine' disclosed a bug submitted by b'd0bby' 
b'Stored XSS filter bypass on discussion forum. "URL" tag. '
28 May 2024 timeline
b'ExpressionEngine' disclosed a bug submitted by b'd0bby' 
b'Stored XSS filter bypass on discussion forum. '
28 May 2024 timeline
b'ExpressionEngine' disclosed a bug submitted by b'sum-catnip' 
b'Authenticated RCE via page title'
28 May 2024 timeline
b'ExpressionEngine' disclosed a bug submitted by b'egix' 
b'PHP Code Injection through "Translate::save()" method'
28 May 2024 timeline
b'ExpressionEngine' disclosed a bug submitted by b'mariuszpoplawski' 
b'Low privileges (auth) Remote Command Execution - PHP file upload bypass.'
28 May 2024 timeline
b'HackerOne' disclosed a bug submitted by b'hacktus' 
b'LLM03: Training Data Poisoning via ASCII decoding '
28 May 2024 timeline
b'GitLab' disclosed a bug submitted by b'yvvdwf' 
b'Stored-XSS injected in Wiki page via Banzai pipeline'
28 May 2024 timeline
b'TikTok' disclosed a bug submitted by b'fr4via' 
b'Lynxview JS interfaces Takeover via deeplink traversal'
24 May 2024 timeline
b'Teleport' disclosed a bug submitted by b'el1g0ld8m1th' 
b'SSRF in region parameter that leads to AWS Teleport role AWS account takeover'
24 May 2024 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'svalkanov' 
b'[CVE-2024-26146] Header Parsing leads to Possible Denial of Service Vulnerability'
24 May 2024 timeline
b'HackerOne' disclosed a bug submitted by b'iambouali' 
b'Inadequate redaction exposes sensitive information via the ShareReportViaEmail" GraphQL endpoint'
24 May 2024 timeline
b'HackerOne' disclosed a bug submitted by b'bate5a' 
b'Insecure Direct Object Reference (IDOR) Allows Viewing Private Report Details via /bugs.json Endpoint'
23 May 2024 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'svalkanov' 
b'[CVE-2024-26142] ReDoS vulnerability in Accept header parsing in Action Dispatch '
22 May 2024 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'svalkanov' 
b'[CVE-2024-25126] Denial of Service Vulnerability in Rack Content-Type Parsing'
22 May 2024 timeline
b'Doppler' disclosed a bug submitted by b'zig_shark' 
b'Acquisition on broken link listed on the page "https://docs.doppler.com/docs/removal-deprecated-packages-scripts in [scheduling a call]'
22 May 2024 timeline
b'HackerOne' disclosed a bug submitted by b'callmed0_4' 
b'Able to Create Testimonials for myself using Sandbox'
22 May 2024 timeline
b'Nextcloud' disclosed a bug submitted by b'axosolaman' 
b'Weak ssh algorithms and CVE-2023-48795 Discovered on various subdomains of nextcloud.com'
22 May 2024 timeline
b'Automattic' disclosed a bug submitted by b'xurizaemon0' 
b'Authentication & Registration Bypass in Newspack Extended Access'
20 May 2024 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'osama-hamad' 
b'A user with only [MODIFY_SETTINGS] permmision could takeover any user accounts'
20 May 2024 timeline
1 ... 42 43 44 45 46 ... 738
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM